Microsoft IIS Malformed HTTP HOST Header Field Denial Of Service Vulnerability

Microsoft IIS is reported to be prone to a remotely exploitable denial of service.

This condition occurs upon receipt of a malformed HOST field in a HTTP request for 'shtml.dll'. It is possible to reproduce this condition by sending a HTTP POST request with a HOST header field that is composed of an excessive number of slashes (/).

Further details are not known at this time.


Privacy Statement
Copyright 2010, SecurityFocus