Vulnerability Details CVE-2001-1186
Microsoft IIS 5.0 allows remote attackers to cause a denial of service via an HTTP request with a content-length value that is larger than the size of the request, which prevents IIS from timing out the connection.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.324
EPSS Ranking 96.7%
CVSS Severity
CVSS v2 Score 5.0
References
- http://online.securityfocus.com/archive/1/244931
- http://online.securityfocus.com/archive/1/245100
- http://www.iss.net/security_center/static/7691.php
- http://www.securityfocus.com/archive/1/244892
- http://www.securityfocus.com/bid/3667
- http://online.securityfocus.com/archive/1/244931
- http://online.securityfocus.com/archive/1/245100
- http://www.iss.net/security_center/static/7691.php
- http://www.securityfocus.com/archive/1/244892
- http://www.securityfocus.com/bid/3667
Products affected by CVE-2001-1186
-
cpe:2.3:a:microsoft:internet_information_services:5.0