Windows : Microsoft Bulletins : Microsoft MS03-022 security check

Anfälligkeitssuche		Suche in 219043 CVE Beschreibungen und 99761 Test Beschreibungen, Zugriff auf 10,000+ Quellverweise.
	Tests CVE Alle

Test Kennung: 1.3.6.1.4.1.25623.1.0.101016

Kategorie: Windows : Microsoft Bulletins

Titel: Microsoft MS03-022 security check

Zusammenfassung: There is a flaw in the way nsiislog.dll processes incoming client requests.; A vulnerability exists because an attacker could send specially formed HTTP request (communications); to the server that could cause IIS to fail or execute code on the user's system.

Beschreibung: Summary:
There is a flaw in the way nsiislog.dll processes incoming client requests.
A vulnerability exists because an attacker could send specially formed HTTP request (communications)
to the server that could cause IIS to fail or execute code on the user's system.

Solution:
Microsoft has released a patch to correct these issues.
Please see the references for more information.

Note: This patch can be installed on systems running Microsoft Windows 2000 Service Pack 2,
Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4.
This patch has been superseded by the one provided in Microsoft Security Bulletin MS03-019.

CVSS Score:
7.5

CVSS Vector:
AV:N/AC:L/Au:N/C:P/I:P/A:P

Querverweis: Common Vulnerability Exposure (CVE) ID: CVE-2003-0349
Bugtraq: 20030626 Windows Media Services Remote Command Execution #2 (Google Search)
http://marc.info/?l=bugtraq&m=105665030925504&w=2
CERT/CC vulnerability note: VU#113716
http://www.kb.cert.org/vuls/id/113716
Microsoft Security Bulletin: MS03-022
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-022
http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=NTBUGTRAQ&P=R4563
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A938
http://securitytracker.com/id?1007059
http://secunia.com/advisories/9115

Copyright Copyright (C) 2009 Christian Eric Edjenguele

Dies ist nur einer von 99761 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus.
Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.

Test Kennung:	1.3.6.1.4.1.25623.1.0.101016
Kategorie:	Windows : Microsoft Bulletins
Titel:	Microsoft MS03-022 security check
Zusammenfassung:	There is a flaw in the way nsiislog.dll processes incoming client requests.; A vulnerability exists because an attacker could send specially formed HTTP request (communications); to the server that could cause IIS to fail or execute code on the user's system.
Beschreibung:	Summary: There is a flaw in the way nsiislog.dll processes incoming client requests. A vulnerability exists because an attacker could send specially formed HTTP request (communications) to the server that could cause IIS to fail or execute code on the user's system. Solution: Microsoft has released a patch to correct these issues. Please see the references for more information. Note: This patch can be installed on systems running Microsoft Windows 2000 Service Pack 2, Windows 2000 Service Pack 3 and Microsoft Windows 2000 Service Pack 4. This patch has been superseded by the one provided in Microsoft Security Bulletin MS03-019. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Querverweis:	Common Vulnerability Exposure (CVE) ID: CVE-2003-0349 Bugtraq: 20030626 Windows Media Services Remote Command Execution #2 (Google Search) http://marc.info/?l=bugtraq&m=105665030925504&w=2 CERT/CC vulnerability note: VU#113716 http://www.kb.cert.org/vuls/id/113716 Microsoft Security Bulletin: MS03-022 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-022 http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0306&L=NTBUGTRAQ&P=R4563 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A938 http://securitytracker.com/id?1007059 http://secunia.com/advisories/9115
Copyright	Copyright (C) 2009 Christian Eric Edjenguele