Oval Definition:	oval:org.mitre.oval:def:938
Revision Date: 2004-06-30 Version: 41 Title: IIS5.0 Windows Media Services Large POST Vulnerability Description: Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll. Family: windows Class: vulnerability Status: ACCEPTED Reference(s): CVE-2003-0349 Platform(s): Microsoft Windows 2000 Product(s): Microsoft Internet Information Server (IIS) Definition Synopsis IIS major version equals 5 AND IIS minor version equals 0 AND File %windir%\System32\nsiislog.dll is less than 4.1.0.3932 AND NOT Patch KB822343 Installed
BACK