New Search

IIS ISAPI Extension Indexing Service Buffer Overflow (Code Red)

oval:org.mitre.oval:def:197

Buffer overflow in ISAPI extension (idq.dll) in Index Server 2.0 and Indexing Service 2000 in IIS 6.0 beta and earlier allows remote attackers to execute arbitrary commands via a long argument to Internet Data Administration (.ida) and Internet Data Query (.idq) files such as default.ida as commonly exploited by Code Red.

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2001-0500
Product(s):
  • Microsoft Internet Information Server (IIS)