New Search

Windows 2000 IIS Heap Overrun in HTR Chunked Encoding

oval:org.mitre.oval:def:29

Buffer overflow in the chunked encoding transfer mechanism in IIS 4.0 and 5.0 allows attackers to execute arbitrary code via the processing of HTR request sessions aka "Heap Overrun in HTR Chunked Encoding Could Enable Web Server Compromise."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2002-0364
Product(s):
  • Microsoft Internet Information Server (IIS)