IIS MX_STATS_LogLine NSIISlog.DLL Buffer Overflow
Severity: HIGH
CVE Identifier: CVE-2003-0349
DESCRIPTION
Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
TREND MICRO PROTECTION INFORMATION
Apply associated Trend Micro DPI Rules.
SOLUTION
Trend Micro Deep Security DPI Rule Number: 1000809
Trend Micro Deep Security DPI Rule Name: 1000809 - IIS MX_STATS_LogLine NSIISlog.DLL Buffer Overflow
AFFECTED SOFTWARE AND VERSION
- Microsoft Windows 2000 a