Lucene search
Kaspersky LabKLA10999HistoryMar 22, 2017 - 12:00 a.m.
KLA10999 Arbitrary code execution vulnerability in Microsoft IIS
2017-03-2200:00:00
Kaspersky Lab
threats.kaspersky.com
153
0.971 High
EPSS
Percentile
99.8%
CVSS:
10.0
Detect date:
03/22/2017
Severity:
Critical
Description:
A buffer overflow vulnerability was found in in the WebDAV service in IIS (Internet Information Services) 6.0 in Microsoft Windows Server 2003 R2. By exploiting this vulnerability malicious users can execute arbitary code or cause a denial of service. This vulnerability can be exploited remotely via a long header beginning with βIf: <http://β in a PROPFIND request.
Affected products:
Microsoft Windows Server 2003 R2
Solution:
Follow the instructions from the solution link to install a micropatch.
0patch Blog
Original advisories:
Impacts:
ACE
Related products:
CVE-IDS:
Related
myhack58
myhack58
packetstorm
packetstorm
MS IIS 6.0 Buffer Overflow NSE Script
2017-04-08 00:00:00
Microsoft IIS WebDav ScStoragePathFromUrl Overflow
2017-05-11 00:00:00
Microsoft IIS 6.0 WebDAV ScStoragePathFromUrl Buffer Overflow
2017-03-27 00:00:00
canvas
canvas
Immunity Canvas: IIS6_PROPFIND
2017-03-27 02:59:00
cisa_kev
cisa_kev
Microsoft Windows Server Buffer Overflow Vulnerability
2021-11-03 00:00:00
securelist
securelist
Operation TunnelSnake
2021-05-06 10:00:45
IT threat evolution Q3 2017. Statistics
2017-11-10 10:45:04
cvelist
cvelist
CVE-2017-7269
2017-03-27 01:55:00
nvd
nvd
CVE-2017-7269
2017-03-27 02:59:00
metasploit
metasploit
Microsoft IIS WebDav ScStoragePathFromUrl Overflow
2017-03-28 14:53:18
nessus
nessus
checkpoint_advisories
checkpoint_advisories
Microsoft IIS WebDAV ScStoragePathFromUrl Buffer Overflow (CVE-2017-7269)
2017-03-29 00:00:00
prion
prion
Buffer overflow
2017-03-27 02:59:00
openvas
openvas
Microsoft Internet Information Services Buffer Overflow Vulnerability
2017-03-30 00:00:00
Microsoft Windows 'WebDAV' Remote Code Execution Vulnerability (KB3197835)
2017-06-16 00:00:00
attackerkb
attackerkb
CVE-2017-7269
2017-03-27 00:00:00
zdt
zdt
Microsoft IIS WebDav ScStoragePathFromUrl Overflow Exploit
2017-05-11 00:00:00
nuclei
nuclei
Windows Server 2003 & IIS 6.0 - Remote Code Execution
2021-02-24 13:29:23
thn
thn
cisa
cisa
Internet Information Services (IIS) 6.0 Vulnerability
2017-03-30 00:00:00
cve
cve
CVE-2017-7269
2017-03-27 02:59:00
seebug
seebug
IIS 6.0 WebDAV remote code execution vulnerability (CVE-2017-7269)
2017-03-28 00:00:00
exploitdb
exploitdb
ics
ics
Siemens Molecular Imaging Vulnerabilities
2017-08-03 12:00:00
threatpost
threatpost
Publicly Attacked Microsoft IIS Zero Day Unlikely to be Patched
2017-03-29 15:15:50
Rare XP Patches Fix Three Remaining Leaked NSA Exploits
2017-06-14 08:50:23
qualysblog
qualysblog
The Shadow Brokers Release Zero Day Exploit Tools
2017-04-15 07:11:21
Microsoft Fixes 94 Security Issues in Massive June Update
2017-06-13 18:28:02
Managing CISA Known Exploited Vulnerabilities with Qualys VMDR
2022-02-23 05:39:00
rapid7community
rapid7community
Metasploit Wrapup
2017-05-26 19:06:43
kitploit
kitploit
Sn1per v7.0 - Automated Pentest Framework For Offensive Security Experts
2019-05-12 13:09:00
trendmicroblog
trendmicroblog