Vulnerability CVE-2003-0349 - CERT Civis.Net

Vulnerability Name:

CVE-2003-0349 (CCN-12652)

Assigned:

2003-06-25

Published:

2003-06-25

Updated:

2018-10-12

Summary:

Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.

CVSS v3 Severity:

7.3 High (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Unchanged
Impact Metrics:	Confidentiality (C): Low Integrity (I): Low Availibility (A): Low

CVSS v2 Severity:

7.5 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
6.2 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

7.5 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P)
6.2 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P/E:F/RL:OF/RC:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Partial Integrity (I): Partial Availibility (A): Partial

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: CCN
Type: BugTraq Mailing List, Thu Jun 26 2003 - 13:28:52 CDT
Windows Media Services Remote Command Execution #2

Source: MITRE
Type: CNA
CVE-2003-0349

Source: BUGTRAQ
Type: UNKNOWN
20030626 Windows Media Services Remote Command Execution #2

Source: CCN
Type: SA9115
Microsoft Windows Media Services Remote System Access

Source: SECUNIA
Type: UNKNOWN
9115

Source: CCN
Type: SECTRACK ID: 1007059
Microsoft Windows Media Services (nsiislog.dll) Extension to Internet Information Server (IIS) Has Another Buffer Overflow That Lets Remote Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1007059

Source: CCN
Type: CIAC Information Bulletin N-109
Microsoft Flaw in ISAPI Extension for Windows Media Services Could Cause Code Execution

Source: CCN
Type: US-CERT VU#113716
Microsoft Windows Media Services contains buffer overflow in nsiislog.dll

Source: CERT-VN
Type: US Government Resource
VU#113716

Source: CCN
Type: Microsoft Security Bulletin MS03-022
Flaw in ISAPI Extension for Windows Media Services Could Cause Code Execution (822343)

Source: NTBUGTRAQ
Type: Exploit, Patch, Vendor Advisory
20030626 Windows Media Services Remote Command Execution #2

Source: CCN
Type: OSVDB ID: 4535
Microsoft Media Services ISAPI nsiislog.dll POST Overflow

Source: CCN
Type: BID-8035
Microsoft Windows Media Services NSIISlog.DLL Remote Buffer Overflow Vulnerability

Source: CCN
Type: BID-9878
Windows Media Services MX_STATS_LogLine NSIISlog.DLL Remote Buffer Overflow Vulnerability

Source: MS
Type: UNKNOWN
MS03-022

Source: XF
Type: UNKNOWN
win-nsiislog-post-bo(12652)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:938

Source: CCN
Type: Microsoft Knowledge Base Article 822343
Flaw in ISAPI Extension for Windows Media Services May Cause Code Execution

Vulnerable Configuration:

Configuration 1:

cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/o:microsoft:windows_2000:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000_advanced_server:*:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:::datacenter_server:*:*:*:*:*

OR cpe:/o:microsoft:windows_nt:4.0::server:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:::server:*:*:*:*:*

Denotes that component is vulnerable

Oval Definitions

Definition ID	Class	Title	Last Modified
oval:org.mitre.oval:def:938	V	IIS5.0 Windows Media Services Large POST Vulnerability	2004-06-30