Vulnerability Name:

CVE-2004-0205 (CCN-16578)

Assigned:2004-07-13
Published:2004-07-13
Updated:2018-10-12
Summary:Buffer overflow in Microsoft Internet Information Server (IIS) 4.0 allows local users to execute arbitrary code via the redirect function.
CVSS v3 Severity:9.3 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Local
Attack Complexity (AC): Low
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:7.2 High (CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
7.2 High (CCN CVSS v2 Vector: AV:L/AC:L/Au:N/C:C/I:C/A:C)
Exploitability Metrics:Access Vector (AV): Local
Access Complexity (AC): Low
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-Other
Vulnerability Consequences:Gain Access
References:Source: MITRE
Type: CNA
CVE-2004-0205

Source: CCN
Type: SA12061
Microsoft Internet Information Server Redirection Buffer Overflow Vulnerability

Source: SECUNIA
Type: UNKNOWN
12061

Source: CCN
Type: CIAC Information Bulletin 0-179
Microsoft Update for IIS 4.0 (841373)

Source: CIAC
Type: UNKNOWN
O-179

Source: CCN
Type: US-CERT VU#717748
Microsoft Internet Information Server (IIS) 4.0 contains a buffer overflow in the redirect function

Source: CERT-VN
Type: Patch, Third Party Advisory, US Government Resource
VU#717748

Source: CCN
Type: Microsoft Security Bulletin MS04-021
Security Update for IIS 4.0 (841373)

Source: OSVDB
Type: UNKNOWN
7799

Source: BID
Type: UNKNOWN
10706

Source: CCN
Type: BID-10706
Microsoft IIS 4 Redirect Remote Buffer Overflow Vulnerability

Source: CERT
Type: Patch, Third Party Advisory, US Government Resource
TA04-196A

Source: MS
Type: UNKNOWN
MS04-021

Source: XF
Type: UNKNOWN
iis-redirect-bo(16578)

Source: XF
Type: UNKNOWN
iis-redirect-bo(16578)

Source: CCN
Type: IBM Internet Security Systems X-Force Database
Microsoft Internet Information Server (IIS) MS04-021 patch is not installed

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:2204

Vulnerable Configuration:Configuration 1:
  • cpe:/a:avaya:ip600_media_servers:*:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_information_services:4.0:*:*:*:*:*:*:*
  • OR cpe:/h:avaya:definity_one_media_server:*:*:*:*:*:*:*:*
  • OR cpe:/h:avaya:s8100:*:*:*:*:*:*:*:*

    • Configuration 2:
  • cpe:/o:avaya:modular_messaging_message_storage_server:s3400:*:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:internet_information_services:4.0:*:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows_nt:4.0:sp6a:*:*:workstation:*:x86:*
  • OR cpe:/o:microsoft:windows_nt:4.0:sp6a:*:*:server:*:x86:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:2204
    V
    		IIS4.0 Redirect Function Buffer Overflow
    2008-03-24
    BACK
    avaya ip600 media servers *
    microsoft internet information server 4.0
    avaya definity one media server *
    avaya s8100 *
    avaya modular messaging message storage server s3400
    microsoft internet information server 4.0
    microsoft windows nt 4.0 sp6a
    microsoft windows nt 4.0 sp6a