Denial of Service in Microsoft Windows Media Server for Windows 2000 and Windows NT

Reported May 28, 2003, by Microsoft.

 

 

VERSIONS AFFECTED

 

  • Windows 2000

  • Windows NT

 

DESCRIPTION

 

A new vulnerability in Microsoft Windows Media Services (WMS) for Windows 2000 and Windows NT can result in a Denial of Service (DoS) condition. This vulnerability stems from a flaw in the way nsiislog.dll processes incoming requests. An attacker can exploit this vulnerability by sending specially formed communications to the server that cause IIS to stop responding to Internet requests.

 

 

VENDOR RESPONSE

 

Microsoft has released Security Bulletin MS03-019, "Flaw in ISAPI Extension for Windows Media Services Could Cause Denial of Service (817772)," to address this vulnerability and recommends that affected users apply the appropriate patch mentioned in the bulletin.

 

·         CREDIT          

Discovered by Brett Moore.

TAGS: Security
Hide comments

Comments

  • Allowed HTML tags: <em> <strong> <blockquote> <br> <p>

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.
Publish