Main > Utilities > Patches and Updates >

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030



 

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030

Sponsored Links

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030 Ranking & Summary

RankingClick at the star to rank
Ranking Level
User Review: 0 (0 times)
File size: 1K
Platform: Windows 9X/ME/NT/2K/2003/XP/Vista
License: Freeware
Price:
Downloads: 3455
Date added: 2000-05-12
Publisher: Microsoft Inc.

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030 description

Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Internet Information Server. The vulnerability could be used to slow the performance of an affected server, or temporarily stop it altogether. Incompliance with RFC 2396, the algorithm in IIS that processes URLs has flexibility built in to allow it to process any arbitrary sequence of file extensions or subresource identifiers (referred to in the RFC as path_segments). Byproviding an URL that contains specially-malformed file extension information, a malicious user could misuse this flexibility in order to arbitrarily increase the work factor associated with parsing the URL. This could consume much or all of the CPU availability on the server and preventuseful work from being done. The vulnerability does not provide any capability to cause the server to fail, or to add, change or delete data on it. Likewise, it provides nocapability to usurp administrative control of the web server. The slowdown would only last until the URL had been processed, at which point service would return to normal.

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030 Screenshot

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030 Keywords

Bookmark Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030

Hyperlink code:
Link for forum:

Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030 Copyright

WareSeeker.com do not provide cracks, serial numbers etc for Microsoft IIS Malformed Extension Data in URL Vulnerability patch MS00-030. Any sharing links from rapidshare.com, yousendit.com or megaupload.com are also prohibited.

Allok Video Splitter 2.2.0 Review:

Name (Required)
Email(Required)
Captcha
Featured Software

Want to place your software product here?
Please contact us for consideration.

Contact WareSeeker.com
Related Software
Microsoft has released a patch that eliminates a security vulnerability in Microsoft® Internet Information Server 4.0. The vulnerability could allow a malicious user to consume all resources on a web Free Download
This update resolves the "Malformed Extension Data in URL" security vulnerability in Internet Information Server (IIS) 5.0 and IIS 4.0 Free Download
This update resolves the "Malformed URL can cause Service Failure in IIS 5.0 and Exchange 2000" security vulnerability in Internet Information Server (IIS) 5.0 and Exchange 2000, and is discussed in Free Download
This update resolves the "Unchecked Buffer in Index Server ISAPI Extension Could Enable Web Server Compromise" security vulnerability in Windows 2000 computers running Internet Information Service Free Download
This update resolves two security vulnerabilities in Internet Information Services (IIS) 5.0, the "Absent Directory Browser Argument" vulnerability and the "File Fragment Reading via .HTR" Free Download
Unchecked Buffer in Index Server ISAPI Extension Free Download
Security Patch: Netmon protocol parsing vulnerability Free Download