exploit the possibilities
Home Files News &[SERVICES_TAB]About Contact Add New

can-2003-0702.txt

can-2003-0702.txt
Posted Sep 9, 2003
Site enteredge.com

ISS Server Sensor version 7.0 XPU 20.16 and 7.0 XPU 20.18 are vulnerable to a denial of service attack when a properly malformed URL is submitted via SSL to the underlying Microsoft IIS server causing it to shut down.

tags | advisory, denial of service
advisories | CVE-2003-0702
SHA-256 | cf59a86c78129d05f3e03a7951390576cc8459296c094f26713223ffb646f0e0

can-2003-0702.txt

Change Mirror Download

[enteredgelogo.jpg]


EnterEdge Technology takes a holistic approach to ensuring the Confidentiality, Integrity and Availability of data. By
combining best-of-breed technology with security expertise, education and managed security services, EnterEdge helps
organizations lower costs and improve efficiencies.


[securitycenterheader.gif]


Release Date: August 14, 2003

CVE Number: CAN-2003-0702

Severity: High (Denial of Service)

Systems Affected (confirmed):
ISS Server Sensor version 7.0 XPU 20.16
ISS Server Sensor version 7.0 XPU 20.18

Synopsis: By sending a properly formatted URL via SSL, an attacker can successfully shut down Microsofts IIS service
stopping all web and ftp servers.

Technical Description: This vulnerability was tested with an IIS 5.0 server, running an ISS host based server sensor 7.0
xpu 20.16 and xpu 20.18.

ISS server sensor 7.0 has the ability to plug into ISS via an ISAPI plug-in to allow for IDS on SSL traffic.

By simply sending a properly formatted URL via SSL, the ISAPI filter will crash IIS shutting down the service entirely.
IIS 5 may automatically restart the service when it detects that the service has stopped.

We are currently testing this vulnerability in XPU 20.16 and 20.18 for remote code execution or code redirection.

We contacted ISS on or about August 14th concerning this issue. ISS has since released XPU 20.19 which addresses this
specific issue.

Credit: EnterEdge Technology, LLC

Copyright (c) 1998-2003 EnterEdge Technology
Permission is hereby granted for the redistribution of this alert electronically. It is not to be edited in any way
without express consent of EnterEdge Technology. If you wish to reprint the whole or any part of this alert in any other
medium excluding electronic medium, please e-mail research@enteredge.com for permission.

Disclaimer
The information within this paper may change without notice. Use of this information constitutes acceptance for use in an
AS IS condition. There are NO warranties with regard to this information. In no event shall the author be liable for any
damages whatsoever arising out of or in connection with the use or spread of this information. Any use of this
information is at the user's own risk.

Feedback
Please send suggestions, updates, and comments to: research@enteredge.com
EnterEdge Technology http://www.enteredge.com

Copyright © 2001 EnterEdge Technology, LLC 5500 Interstate N. Pkwy Suite 440 Atlanta, GA 30328
Phone: 770.955.9899 Fax 770.955.9896
Login or Register to add favorites

File Archive:

October 2024

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Oct 1st
    39 Files
  • 2
    Oct 2nd
    23 Files
  • 3
    Oct 3rd
    18 Files
  • 4
    Oct 4th
    20 Files
  • 5
    Oct 5th
    0 Files
  • 6
    Oct 6th
    0 Files
  • 7
    Oct 7th
    17 Files
  • 8
    Oct 8th
    66 Files
  • 9
    Oct 9th
    25 Files
  • 10
    Oct 10th
    20 Files
  • 11
    Oct 11th
    21 Files
  • 12
    Oct 12th
    0 Files
  • 13
    Oct 13th
    0 Files
  • 14
    Oct 14th
    14 Files
  • 15
    Oct 15th
    0 Files
  • 16
    Oct 16th
    0 Files
  • 17
    Oct 17th
    0 Files
  • 18
    Oct 18th
    0 Files
  • 19
    Oct 19th
    0 Files
  • 20
    Oct 20th
    0 Files
  • 21
    Oct 21st
    0 Files
  • 22
    Oct 22nd
    0 Files
  • 23
    Oct 23rd
    0 Files
  • 24
    Oct 24th
    0 Files
  • 25
    Oct 25th
    0 Files
  • 26
    Oct 26th
    0 Files
  • 27
    Oct 27th
    0 Files
  • 28
    Oct 28th
    0 Files
  • 29
    Oct 29th
    0 Files
  • 30
    Oct 30th
    0 Files
  • 31
    Oct 31st
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2024 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close