7.8

CVE-2005-4360

Exploit

The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctly handled by IIS, as demonstrated using "/_vti_bin/.dll/*/~0".  NOTE: the consequence was originally believed to be only a denial of service (application crash and reboot).

Data is provided by the National Vulnerability Database (NVD)
MicrosoftInternet Information Services Version5.1
   MicrosoftWindows Xp Version- Updatesp2 SwEditionprofessional HwPlatform-
Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.
EPSS Metriken
Type Source Score Percentile
EPSS FIRST.org 77.06% 0.989
CVSS Metriken
Source Base Score Exploit Score Impact Score Vector string
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:C/A:N
CWE-252 Unchecked Return Value

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

http://secunia.com/advisories/18106
Vendor Advisory
Exploit
http://www.securityfocus.com/bid/15921
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-191A.html
Third Party Advisory
US Government Resource