IIS MX_STATS_LogLine NSIISlog.DLL Buffer Overflow

  Severity: HIGH
  CVE Identifier: CVE-2003-0349

  DESCRIPTION

Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.

  TREND MICRO PROTECTION INFORMATION

Apply associated Trend Micro DPI Rules.

  SOLUTION

  Trend Micro Deep Security DPI Rule Number: 1000809
  Trend Micro Deep Security DPI Rule Name: 1000809 - IIS MX_STATS_LogLine NSIISlog.DLL Buffer Overflow

  AFFECTED SOFTWARE AND VERSION

  • Microsoft Windows 2000 a

Featured Stories