|
Family: Denial of Service --> Category: denial
IIS Malformed Extension Data in URL Vulnerability Scan
Vulnerability Scan Summary Performs a denial of service against IIS
Detailed Explanation for this Vulnerability Test
It was possible to make IIS use 100% of the CPU by
sending it malformed extension data in the URL
requested, preventing him to serve web pages
to legitimate clients.
Solution : Microsoft has made patches available at :
- For Internet Information Server 4.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=20906
- For Internet Information Server 5.0:
http://www.microsoft.com/Downloads/Release.asp?ReleaseID=20904
Threat Level: High
Click HERE for more information and discussions on this network vulnerability scan.
|