Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0349

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2003-0349
Last Modified 10 Sep 2008 03:18:41
Published 24 Jul 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2003-0349

Summary

Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.

Vulnerable Systems

Operating System

  • Microsoft Windows 2000


References

CERT-VN - VU#113716

NTBUGTRAQ - 20030626 Windows Media Services Remote Command Execution #2

MS - MS03-022

SECTRACK - 1007059

SECUNIA - 9115


Last Updated: 27 May 2016 10:37:52