CVE-2003-0226

Currently unrated

Key Information:

Vendor: Microsoft
Status: Internet Information Services
Vendor: CVE Published:; 9 June 2003

Summary

Microsoft Internet Information Services (IIS) 5.0 and 5.1 allows remote attackers to cause a denial of service via a long WebDAV request with a (1) PROPFIND or (2) SEARCH method, which generates an error condition that is not properly handled.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://marc.info/?l=ntbugtraq&m=105421243732552&w=2

mailing-listx_refsource_NTBUGTRAQ

http://www.spidynamics.com/iis_alert.html

x_refsource_MISC

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 9, 2003
Vulnerability Reserved
Apr 30, 2003

Collectors

NVD DatabaseMitre Database