CVE-2002-2081

2005-07-1404:00:00

mitre

www.cve.org

microsoft site server

remote attackers

disk consumption

http post

targeturl parameter

c:\temp

AI Score

6.6

Confidence

High

EPSS

0.019

Percentile

88.7%

JSON

cphost.dll in Microsoft Site Server 3.0 allows remote attackers to cause a denial of service (disk consumption) via an HTTP POST of a file with a long TargetURL parameter, which causes Site Server to abort and leaves the uploaded file in c:\temp.

References

archives.neohapsis.com/archives/vulnwatch/2002-q1/0033.html

www.iss.net/security_center/static/8053.php

www.securityfocus.com/bid/4002