Info

Disclosure

Dec 06, 2004

Discovery

Unknown

Dates

Exploit

Dec 06, 2004

Solution

Unknown

Description

A remote overflow exists in Microsoft Browser Client Context Tool (W3Who.dll) The ISAPI application fails to sanitize user input resulting in a buffer overflow. With a specially crafted request, an attacker can trigger the overflow resulting in a loss of integrity.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround(s): Remove the W3Who.dll ISAPI extension or restrict access

Products

Microsoft Corporation	Windows 2000 Resource Kit	Unknown or Unspecified
Microsoft Corporation	Windows XP Resource Kit	Unknown or Unspecified

References

Security Tracker: 1012435
Related OSVDB ID: 12256 12257
Secunia Advisory ID: 13365
ISS X-Force ID: 18377
CVE ID: 2004-1134 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-12/0157.html
Generic Exploit URL: http://metasploit.com/projects/Framework/exploits.html#iis_w3who_overflow
Other Advisory URL: http://www.exaprobe.com/labs/advisories/esa-2004-1206.html

Credit

Nicolas Gregoire - ngregoireexaprobe.com - Exaprobe

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

Windows 2000 Resource Kit

Windows XP Resource Kit

References

Credit