DNS Intrusion Detection Vulnerability in Microsoft ISA Server 2000
CVE-2003-0011

Currently unrated

Key Information:

Vendor: Microsoft
Status: Isa Server
Vendor: CVE Published:; 24 March 2003

Summary

An unknown vulnerability exists in the DNS intrusion detection filter for Microsoft Internet Security and Acceleration (ISA) Server 2000. This flaw allows remote attackers to potentially disrupt service by sending specific types of DNS requests that the server fails to handle correctly, leading to a denial of service by blocking essential traffic to DNS servers. Organizations using this product should take precautions to mitigate this risk.

References

http://www.securityfocus.com/bid/7145

vdb-entryx_refsource_BID

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

14% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 24, 2003
Vulnerability Reserved
Jan 2, 2003