Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Buffer overflow in IIS 4.0 allows remote attackers to cause a denial of service via a malformed request for files with .HTR, .IDC, or .STM extensions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft IIS 4.0 .HTR ISAPI扩展远程缓冲区溢出漏洞(MS99-019)
Vulnerability Description
IIS 4.0是一款Windows NT系统自带的的Web服务器软件,由Microsoft公司开发维护。 IIS 4.0在处理以.HTR为后缀的文件请求时存在缓冲区溢出漏洞,远程攻击者可能利用此漏洞通过溢出攻击以Web进程的权限在目标系统上执行任意指令。 IIS支持对一些特定文件名后缀(如.ASP、.IDC、.HTR)的文件请求执行进一步的处理,当服务器接到此类文件的请求时,每种后缀的文件由一个特定的DLL文件处理。ISM.DLL用于处理.HTR、.STM、.IDC为后缀的文件请求,IIS的HTR ISA
CVSS Information
N/A
Vulnerability Type
N/A