Vulnerability Details CVE-2003-0227
The logging capability for unicast and multicast transmissions in the ISAPI extension for Microsoft Windows Media Services in Microsoft Windows NT 4.0 and 2000, nsiislog.dll, allows remote attackers to cause a denial of service in Internet Information Server (IIS) and execute arbitrary code via a certain network request.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.486
EPSS Ranking 97.6%
CVSS Severity
CVSS v2 Score 5.0
References
- http://marc.info/?l=bugtraq&m=105427615626177&w=2
- http://marc.info/?l=ntbugtraq&m=105421127531558&w=2
- http://marc.info/?l=ntbugtraq&m=105421176432011&w=2
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-019
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A936
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A966
- http://marc.info/?l=bugtraq&m=105427615626177&w=2
- http://marc.info/?l=ntbugtraq&m=105421127531558&w=2
- http://marc.info/?l=ntbugtraq&m=105421176432011&w=2
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-019
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A936
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A966
Products affected by CVE-2003-0227
-
cpe:2.3:o:microsoft:windows_2000:-
-
cpe:2.3:o:microsoft:windows_nt:4.0