Vulnerability Note VU#698564

Microsoft CIS and RPC over HTTP Proxy components fail to properly handle responses

Original Release date: 13 Apr 2004 | Last revised: 13 Apr 2004

Overview

A vulnerability in a Microsoft HTTP Proxy component may lead to a denial of service.

Description

Microsoft's COM Internet Sevices (CIS) and Remote Procedure Call (RPC) over HTTP Proxy contain a vulnerability that could permit an attacker to cause a denial of service. When a forwarded request is passed over either of these components to the backend system, an attacker may be able to reply to the request with a specially crafted response. This could cause the vulnerable components to stop accepting future requests. This vulnerability affects the following systems:

  • Windows NT Server 4.0
  • Windows NT Server 4.0, Terminal Server Edition
  • Windows 2000
  • Windows Server 2003

Impact

A remote attacker may be able to stop the vulnerable component from accepting messages. This would lead to a denial of service.

Solution

Apply a patch from the vendor
Microsoft Security Bulletin MS04-012 contains patch information to resolve this issue.

Systems Affected (Learn More)

VendorStatusDate NotifiedDate Updated
Microsoft CorporationAffected-13 Apr 2004
If you are a vendor and your product is affected, let us know.

CVSS Metrics (Learn More)

Group Score Vector
Base N/A N/A
Temporal N/A N/A
Environmental N/A N/A

References

Credit

The Microsoft Security Bulletin thanks Qualys for reporting this vulnerability.

This document was written by Jason A Rafail.

Other Information

  • CVE IDs: CAN-2003-0807
  • Date Public: 13 Apr 2004
  • Date First Published: 13 Apr 2004
  • Date Last Updated: 13 Apr 2004
  • Severity Metric: 5.32
  • Document Revision: 9

Feedback

If you have feedback, comments, or additional information about this vulnerability, please send us email.