CVE-2003-0718

Currently unrated

Key Information:

Vendor
Microsoft
Status
Internet Information Server
Internet Information Services
Vendor
CVE Published:
3 November 2004

Summary

The WebDAV Message Handler for Internet Information Services (IIS) 5.0, 5.1, and 6.0 allows remote attackers to cause a denial of service (memory and CPU exhaustion, application crash) via a PROPFIND request with an XML message containing XML elements with a large number of attributes.

References

https://oval.cisecurity.org/repository/search/definition/...
vdb-entrysignaturex_refsource_OVAL
https://exchange.xforce.ibmcloud.com/vulnerabilities/17645
vdb-entryx_refsource_XF
https://exchange.xforce.ibmcloud.com/vulnerabilities/17656
vdb-entryx_refsource_XF

EPSS Score

94% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Collectors

NVD DatabaseMitre Database
.