7.8

CVE-2005-4360

Exploit
The URL parser in Microsoft Internet Information Services (IIS) 5.1 on Windows XP Professional SP2 allows remote attackers to execute arbitrary code via multiple requests to ".dll" followed by arguments such as "~0" through "~9", which causes ntdll.dll to produce a return value that is not correctly handled by IIS, as demonstrated using "/_vti_bin/.dll/*/~0".  NOTE: the consequence was originally believed to be only a denial of service (application crash and reboot).
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
MicrosoftInternet Information Services Version5.1
   MicrosoftWindows Xp Version- Updatesp2 SwEditionprofessional HwPlatform-
Zu dieser CVE wurde keine Warnung gefunden.
EPSS Metriken
Typ Quelle Score Percentile
EPSS FIRST.org 86.73% 0.997
CVSS Metriken
Quelle Base Score Exploit Score Impact Score Vector String
nvd@nist.gov 7.8 10 6.9
AV:N/AC:L/Au:N/C:N/I:C/A:N
CWE-252 Unchecked Return Value

The product does not check the return value from a method or function, which can prevent it from detecting unexpected states and conditions.

http://archive.cert.uni-stuttgart.de/bugtraq/2007/07/msg00254.html
Third Party Advisory
Issue Tracking
http://ingehenriksen.blogspot.com/2005/12/microsoft-iis-remote-dos-dll-url.html
Vendor Advisory
Exploit
http://secunia.com/advisories/18106
Vendor Advisory
Exploit
http://securityreason.com/securityalert/271
Third Party Advisory
http://securitytracker.com/alerts/2005/Dec/1015376.html
Third Party Advisory
VDB Entry
http://www.osvdb.org/21805
Broken Link
http://www.securityfocus.com/archive/1/419707/100/0/threaded
Third Party Advisory
VDB Entry
http://www.securityfocus.com/bid/15921
Third Party Advisory
VDB Entry
http://www.us-cert.gov/cas/techalerts/TA07-191A.html
Third Party Advisory
US Government Resource
http://www.vupen.com/english/advisories/2005/2963
Vendor Advisory
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-041
Patch
Vendor Advisory
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1703
Third Party Advisory