CERT-In Vulnerability Note CIVN-2007-86
Microsoft IIS (Internet Information Server 5.1) DLL Request Denial of Service Vulnerability

Original Issue Date: July 11, 2007

Severity Rating: Medium


Systems Affected

• Windows XP Professional Service Pack 2

Overview

A vulnerability has been reported in Microsoft IIS (Internet Information Server 5.1), which could be exploited by remote attacker to cause a denial of service or take complete control of an affected system.

Description

There is a remote code execution vulnerability in Internet Information Services (IIS) 5.1 on Windows XP Professional Service Pack 2 that could allow an attacker who successfully exploited this vulnerability to take complete control of the affected system. An attacker could exploit the vulnerability by sending specially crafted URL requests to a web page hosted by Internet Information Services.

This issue is caused by an error while processing specially crafted HTTP requests sent to a virtual directory that is configured with "Scripts & Executables" permissions (e.g. "/_vti_bin/"), which could be exploited by remote attackers to crash or compromise and affect server via a specially crafted request.

Note: It may be noted that Proof of Concept exploit code for this vulnerability is available on Internet.

Workarounds

• Use URLScan 2.5

Solution

Apply appropriate patches as mentioned in Microsoft Security Bulletin MS07-041

Vendor Information

Microsoft
http://www.microsoft.com/technet/security/Bulletin/ms07-041.mspx


References

Securityfocus
http://www.securityfocus.com/bid/15921/info

FrSIRT
http://www.frsirt.com/english/advisories/2005/2963

CVE Name
CVE-2007-4360

Contact Information

Phone: +91-11-24368572

Postal address

Indian Computer Emergency Response Team (CERT-In)
Ministry of Communications and Information Technology
Electronics Niketan
6, C.G.O. Complex
New Delhi-110 003