Oval Definition:oval:org.mitre.oval:def:1145
Revision Date:2011-04-25Version:4
Title:ISA Server Poison Cache Vulnerability
Description:Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers.
Family:windowsClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-1215
Platform(s):Microsoft Windows 2000
Product(s):Microsoft Internet Security and Acceleration Server 2000
Definition Synopsis
  • ISA Server 2000 SP2 (or earlier) is installed
  • AND the version of w3proxy.exe is less than 3.0.1200.430
  • AND NOT the patch KB899753 is installed
    • BACK