New Search

IIS Server Side Include Web Pages Buffer Overrun

oval:org.mitre.oval:def:483

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename aka "Server Side Include Web Pages Buffer Overrun."

Family:
windows
Status:
ACCEPTED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2003-0224
Product(s):
  • Microsoft Internet Information Server (IIS)