Microsoft IIS False Content-Length Field DoS Vulnerability

Bugtraq ID: 3667
Class: Failure to Handle Exceptional Conditions
CVE: CVE-2001-1186
CVE-2001-1186
Remote: Yes
Local: No
Published: Dec 11 2001 12:00AM
Updated: Jul 11 2009 09:06AM
Credit: This vulnerability was submitted to BugTraq by "Ivan Hernandez Puga" <ivan.hernandez@globalsis.com.ar> on December 11th, 2001.
Vulnerable: Microsoft IIS 5.0
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP2
- Microsoft Windows 2000 Advanced Server SP1
- Microsoft Windows 2000 Advanced Server SP1
+ Microsoft Windows 2000 Advanced Server
+ Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP2
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Datacenter Server SP1
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP2
- Microsoft Windows 2000 Professional SP1
- Microsoft Windows 2000 Professional SP1
+ Microsoft Windows 2000 Professional
+ Microsoft Windows 2000 Professional
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP2
- Microsoft Windows 2000 Server SP1
- Microsoft Windows 2000 Server SP1
+ Microsoft Windows 2000 Server
+ Microsoft Windows 2000 Server
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus