WEB APPLICATION VULNERABILITIES Standard & Premium

Internet Information Services Other Vulnerability (CVE-2003-0224)

Description

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."

Remediation

References

Related Vulnerabilities

Plone CMS Resource Management Errors Vulnerability (CVE-2012-5499)

Moodle Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2015-2266)

Moodle Improper Input Validation Vulnerability (CVE-2012-6099)

WordPress Plugin Video Embed & Thumbnail Generator Information Disclosure (1.1)

Ruby on Rails Improper Input Validation Vulnerability (CVE-2011-2929)

Severity

Critical

Classification

Tags

Missing Update Known Vulnerabilities