| VID |
12014 |
| Severity |
30 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
WWW |
| Detailed Description |
The IIS web server is vulnerable to a Denial of Service attack due to improperly processing web form.
The FrontPage Server Extensions (FPSE) ship with and are installed by default as part of IIS 4.0 and 5.0. The most familiar FPSE functions allow remote and local web page and content management; however, FPSE also provides browse-time support functions. Among the functions included in the latter category are ones that help process web forms that have been submitted by a user.
This vulnerability exists in one of these functions and stems from Frontpage improperly handling queries to Frontpage Authoring (author.dll) modules as well as shtml calls. It is possible for a remote attacker to send a malformed query to those modules which will cause Frontpage to crash which will then in turn bring down inetinfo.exe on Windows NT 4.0 systems. On Windows 2000 systems, inetinfo.exe is not killed, it just simply "freezes". You can still connect to the IIS 5.0 web server but any further GET/HEAD/etc.. commands will not be processed.
* Note: A restart of the service is required in order to gain normal functionality.
* References:
http://online.securityfocus.com/bid/2144
http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/MS00-100.asp
* Platforms Affected:
Microsoft IIS 4.0
- Microsoft Windows NT 4.0 Option Pack
- Microsoft BackOffice 4.0/4.5
Microsoft IIS 5.0
- Windows 2000 Any version |
| Recommendation |
Apply the patch for this vulnerability.
For Microsoft IIS 4.0,
1. Open the web page http://www.microsoft.com/Downloads/Release.asp?ReleaseID=26704
2. Click <Download Now>
3. Download to your computer for installation and run it.
4. Restart your computer to complete the installation.
For Microsoft IIS 5.0,
1. Open the web page http://www.microsoft.com/Downloads/Release.asp?ReleaseID=26277
2. Select your language from the drop-down list at the top of the page and Click <Go>
3. Click <Security Update>
4. Download to your computer for installation and run it.
5. Restart your computer to complete the installation.
-- OR --
Install the Service Pack included the patch for this vulnerability.
For Microsoft IIS 4.0, install the Windows NT 4.0 Service Pack 6a
1. Open http://www.microsoft.com/ntserver/nts/downloads/recommended/SP6/allSP6.asp
2. Choose a download version
3. Choose a language from the drop-down list below and click <Next>.
4. Click <Start SP6a Express Download> or <Start SP6a Network Download>
5. Run it to start a installation.
For Microsoft IIS 5.0, install the windows Service Pack 2.
1. Open the web page http://www.microsoft.com/windows2000/downloads/servicepacks/sp2/
2. Click <Download Windows 2000 SP2>
3. Choose a language from the Select Language drop-down list, and click <GO>.
4. Download <SP2 Express Installation> for installing only the updates that are necessary.
5. Download <SP2 Network Installation> for installing all of the Windows 2000 SP2 files.
6. Run it to start a installation. |
| Related URL |
CVE-2001-0096 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
