Details of VAR-200101-0033

ID

VAR-200101-0033

CVE

CVE-2000-1147

TITLE

Microsoft IIS 4.0 ISAPI Buffer Overflow Vulnerability

Trust: 0.9

sources: BID: 1911 // CNNVD: CNNVD-200101-075

DESCRIPTION

Buffer overflow in IIS ISAPI .ASP parsing mechanism allows attackers to execute arbitrary commands via a long string to the "LANGUAGE" argument in a script tag. The ASP ISAPI file parser does not properly execute certain malformed ASP files that contain scripts with the LANGUAGE parameter containing a buffer of over 2200 characters and have the RUNAT value set as 'server'. Depending on the data entered into the buffer, a denial of service attack could be launched or arbitrary code could be executed under the SYSTEM privilege level in the event that a malicious ASP file were locally executed on IIS

Trust: 1.17

sources: NVD: CVE-2000-1147 // BID: 1911

AFFECTED PRODUCTS

vendor:	microsoft	model:	internet information server	scope:	eq	version:	4.0	Trust: 1.6
vendor:	microsoft	model:	iis	scope:	eq	version:	4.0	Trust: 0.3
vendor:	microsoft	model:	iis	scope:	ne	version:	5.0	Trust: 0.3

sources: BID: 1911 // CNNVD: CNNVD-200101-075 // NVD: CVE-2000-1147

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2000-1147
value:	MEDIUM
Trust: 1.0
CNNVD:	CNNVD-200101-075
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2000-1147
severity:	MEDIUM
baseScore:	4.6
vectorString:	AV:L/AC:L/AU:N/C:P/I:P/A:P
accessVector:	LOCAL
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	PARTIAL
integrityImpact:	PARTIAL
availabilityImpact:	PARTIAL
exploitabilityScore:	3.9
impactScore:	6.4
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.0

sources: CNNVD: CNNVD-200101-075 // NVD: CVE-2000-1147

PROBLEMTYPE DATA

problemtype:

NVD-CWE-Other

Trust: 1.0

sources: NVD: CVE-2000-1147

THREAT TYPE

local

Trust: 0.9

sources: BID: 1911 // CNNVD: CNNVD-200101-075

TYPE

buffer overflow

Trust: 0.6

sources: CNNVD: CNNVD-200101-075

EXTERNAL IDS

db:	NVD	id:	CVE-2000-1147	Trust: 1.9
db:	BID	id:	1911	Trust: 1.9
db:	BUGTRAQ	id:	20001103 IIS ASP $19.95 HACK - IISHACK 1.5	Trust: 0.6
db:	XF	id:	5510	Trust: 0.6
db:	CNNVD	id:	CNNVD-200101-075	Trust: 0.6

sources: BID: 1911 // CNNVD: CNNVD-200101-075 // NVD: CVE-2000-1147

REFERENCES

url:	http://www.securityfocus.com/bid/1911	Trust: 1.6
url:	http://www.securityfocus.com/archive/1/143070	Trust: 1.6
url:	https://exchange.xforce.ibmcloud.com/vulnerabilities/5510	Trust: 1.0
url:	http://xforce.iss.net/static/5510.php	Trust: 0.6

sources: CNNVD: CNNVD-200101-075 // NVD: CVE-2000-1147

CREDITS

Posted to Bugtraq on November 3, 2000 by Marc Maiffret <marc@eeye.com>.

Trust: 0.9

sources: BID: 1911 // CNNVD: CNNVD-200101-075

SOURCES

db:	BID	id:	1911
db:	CNNVD	id:	CNNVD-200101-075
db:	NVD	id:	CVE-2000-1147

LAST UPDATE DATE

2024-08-14T13:59:41.817000+00:00

SOURCES UPDATE DATE

db:	BID	id:	1911	date:	2009-07-11T03:56:00
db:	CNNVD	id:	CNNVD-200101-075	date:	2005-10-20T00:00:00
db:	NVD	id:	CVE-2000-1147	date:	2017-12-19T02:29:14.473

SOURCES RELEASE DATE

db:	BID	id:	1911	date:	2000-11-06T00:00:00
db:	CNNVD	id:	CNNVD-200101-075	date:	2001-01-09T00:00:00
db:	NVD	id:	CVE-2000-1147	date:	2001-01-09T05:00:00