Executive Summary
Summary | |
---|---|
Title | Vulnerabilities in Microsoft Internet Information Services (IIS) Could Allow Remote Code Execution (2267960) |
Informations | |||
---|---|---|---|
Name | MS10-065 | First vendor Publication | 2010-09-14 |
Vendor | Microsoft | Last vendor Modification | 2010-09-14 |
Severity (Vendor) | Important | Revision | 1.0 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:C/I:C/A:C) | |||
---|---|---|---|
Cvss Base Score | 9.3 | Attack Range | Network |
Cvss Impact Score | 10 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Revision Note: V1.0 (September 14, 2010): Bulletin published.Summary: This security update resolves two privately reported vulnerabilities and one publicly disclosed vulnerability in Internet Information Services (IIS). The most severe of these vulnerabilities could allow remote code execution if a client sends a specially crafted HTTP request to the server. An attacker who successfully exploited this vulnerability could take complete control of an affected system. |
Original Source
Url : http://www.microsoft.com/technet/security/bulletin/MS10-065.mspx |
CWE : Common Weakness Enumeration
% | Id | Name |
---|---|---|
67 % | CWE-119 | Failure to Constrain Operations within the Bounds of a Memory Buffer |
33 % | CWE-287 | Improper Authentication |
OVAL Definitions
Definition Id: oval:org.mitre.oval:def:6933 | |||
Oval ID: | oval:org.mitre.oval:def:6933 | ||
Title: | Request Header Buffer Overflow Vulnerability | ||
Description: | Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2730 | Version: | 7 |
Platform(s): | Microsoft Windows 7 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 | Product(s): | Microsoft Internet Information Server (IIS) 7.5 |
Definition Synopsis: | |||
|
Definition Id: oval:org.mitre.oval:def:6942 | |||
Oval ID: | oval:org.mitre.oval:def:6942 | ||
Title: | Directory Authentication Bypass Vulnerability | ||
Description: | Unspecified vulnerability in Microsoft Internet Information Services (IIS) 5.1 on Windows XP SP3, when directory-based Basic Authentication is enabled, allows remote attackers to bypass intended access restrictions and execute ASP files via a crafted request, aka "Directory Authentication Bypass Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-2731 | Version: | 3 |
Platform(s): | Microsoft Windows XP | Product(s): | Microsoft Internet Information Server (IIS) 5.1 |
Definition Synopsis: | |||
Definition Id: oval:org.mitre.oval:def:7127 | |||
Oval ID: | oval:org.mitre.oval:def:7127 | ||
Title: | IIS Repeated Parameter Request Denial of Service Vulnerability | ||
Description: | Stack consumption vulnerability in the ASP implementation in Microsoft Internet Information Services (IIS) 5.1, 6.0, 7.0, and 7.5 allows remote attackers to cause a denial of service (daemon outage) via a crafted request, related to asp.dll, aka "IIS Repeated Parameter Request Denial of Service Vulnerability." | ||
Family: | windows | Class: | vulnerability |
Reference(s): | CVE-2010-1899 | Version: | 8 |
Platform(s): | Microsoft Windows XP Microsoft Windows Vista Microsoft Windows 7 Microsoft Windows Server 2003 Microsoft Windows Server 2008 Microsoft Windows Server 2008 R2 | Product(s): | Microsoft Internet Information Server (IIS) 5.1 Microsoft Internet Information Server (IIS) 6.0 Microsoft Internet Information Server (IIS) 7.0 Microsoft Internet Information Server (IIS) 7.5 |
Definition Synopsis: | |||
|
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 2 |
ExploitDB Exploits
id | Description |
---|---|
2010-07-02 | Microsoft Internet Information Services (IIS) 5 Authentication Bypass Vulnera... |
OpenVAS Exploits
Date | Description |
---|---|
2010-10-08 | Name : Microsoft IIS ASP Stack Based Buffer Overflow Vulnerability File : nvt/gb_ms_iis_bof_vuln.nasl |
2010-09-15 | Name : Microsoft Internet Information Services Remote Code Execution Vulnerabilities... File : nvt/secpod_ms10-065.nasl |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
67980 | Microsoft IIS Unspecified Remote Directory Authentication Bypass Microsoft IIS contains a flaw that may allow an attacker to gain access to unauthorized privileges. The issue could bypass the need to authenticate to access restricted resources. |
67979 | Microsoft IIS FastCGI Request Header Handling Remote Overflow Microsoft IIS contains a flaw that may allow a remote attacker to execute arbitrary commands or code. The issue is due to an error in the handling of request headers and can be exploited to cause a buffer overflow via a specially crafted HTTP request with FastCGI enabled. |
67978 | Microsoft IIS Repeated Parameter Request Unspecified Remote DoS Microsoft IIS contains a flaw that is due to a stack overflow error in the script processing code when handling repeated parameter requests. This can be exploited to crash the service via specially crafted requests to hosted ASP scripts, which write parameters from the request in the response. |
Information Assurance Vulnerability Management (IAVM)
Date | Description |
---|---|
2010-09-16 | IAVM : 2010-A-0120 - Multiple Vulnerabilities in Microsoft Internet Information Services (IIS) Severity : Category I - VMSKEY : V0025353 |
Snort® IPS/IDS
Date | Description |
---|---|
2014-01-10 | Microsoft Windows IIS FastCGI request header buffer overflow attempt RuleID : 24380 - Revision : 9 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS FastCGI request header buffer overflow attempt RuleID : 24379 - Revision : 14 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS stack exhaustion DoS attempt RuleID : 24276 - Revision : 5 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS stack exhaustion DoS attempt RuleID : 24275 - Revision : 7 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS stack exhaustion DoS attempt RuleID : 24274 - Revision : 7 - Type : SERVER-IIS |
2014-01-10 | generic web server hashing collision attack RuleID : 20825 - Revision : 11 - Type : SERVER-WEBAPP |
2014-01-10 | Microsoft Windows IIS stack exhaustion DoS attempt RuleID : 19192 - Revision : 13 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS FastCGI request header buffer overflow attempt RuleID : 19183 - Revision : 13 - Type : SERVER-IIS |
2014-01-10 | Microsoft Windows IIS FastCGI heap overflow attempt RuleID : 17255 - Revision : 9 - Type : WEB-IIS |
2014-01-10 | Microsoft Windows IIS stack exhaustion DoS attempt RuleID : 17254 - Revision : 12 - Type : SERVER-IIS |
2014-01-10 | IIS 5.1 alternate data stream authentication bypass attempt RuleID : 17103 - Revision : 16 - Type : SERVER-IIS |
Metasploit Database
id | Description |
---|---|
2010-07-02 | MS10-065 Microsoft IIS 5 NTFS Stream Authentication Bypass |
2010-09-14 | Microsoft IIS 6.0 ASP Stack Exhaustion Denial of Service |
Nessus® Vulnerability Scanner
Date | Description |
---|---|
2018-04-03 | Name : The remote web server may allow remote code execution. File : iis_7_pci.nasl - Type : ACT_GATHER_INFO |
2010-09-14 | Name : The remote web server may allow remote code execution. File : smb_nt_ms10-065.nasl - Type : ACT_GATHER_INFO |
2010-07-05 | Name : The remote web server is affected by an authentication bypass vulnerability. File : iis_alternate_data_stream_authentication_bypass.nasl - Type : ACT_ATTACK |
Alert History
Date | Informations |
---|---|
2020-05-23 13:17:13 |
|
2016-03-07 05:24:53 |
|
2016-03-07 00:23:38 |
|
2016-02-27 05:24:58 |
|
2016-02-27 00:24:19 |
|
2014-02-17 11:46:40 |
|
2014-01-19 21:30:31 |
|
2013-11-11 12:41:18 |
|