| VID |
21243 |
| Severity |
40 |
| Port |
80, ... |
| Protocol |
TCP |
| Class |
CGI |
| Detailed Description |
The IIS Web server has the CGI /scripts/nsiislog.dll installed. This CGI may have a buffer overflow vulnerability, which allows a remote attacker to execute arbitrary code with the privileges of the HTTP daemon or cause the server to crash.
The CGI, nsiislog.dll provides the logging capability for multicast and unicast transmissions. This capability is implemented as an Internet Services Application Programming Interface (ISAPI) extension for Windows Media Services in Microsoft Windows NT 4.0 and 2000. The vulnerability results because of an unchecked buffer used by the nsiislog.dll file for logging. If a specially crafted request is sent to the server, the logging file will attempt to write a larger buffer than is possible, which then in turn causes the IIS service to fail.
* Note: This check solely relied on the presence of the relevant CGI to assess this vulnerability, so this might be a false positive.
* References:
http://www.microsoft.com/technet/security/bulletin/MS03-019.asp
http://www.securityfocus.com/archive/1/323415
* Platforms Affected:
Microsoft Windows NT 4.0
Microsoft Windows 2000 |
| Recommendation |
Apply the appropriate patch for your system, available from the Microsoft's download web site.
For Microsoft Windows NT 4.0:
http://microsoft.com/downloads/details.aspx?FamilyId=8D7E3716-1AA7-4EDC-B084-7D50C8D3C2AB&displaylang=en
For Microsoft Windows 2000:
http://microsoft.com/downloads/details.aspx?FamilyId=9EFA4EBD-2068-4742-917D-A2638688C029&displaylang=en
* Installation platforms:
o The Windows NT 4.0 patch can be installed on systems running Service Pack 6a.
o The Windows 2000 patch can be installed on systems running Windows 2000 Service Pack 2 or Service Pack 3.
-- OR --
Patches for Windows platforms are also available from the Microsoft Windows Update Web site, http://windowsupdate.microsoft.com . Windows Update detects what version of Windows you are running and offers the appropriate patch. |
| Related URL |
CVE-2003-0227 (CVE) |
| Related URL |
(SecurityFocus) |
| Related URL |
(ISS) |
|
