CVE

Id
6355  
CVE No.
CVE-2002-1973  
Status
Candidate  
Description
Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access violation and crash) and possibly execute arbitrary code via a long query string that causes a parsing error.  
Phase
Assigned (20050629)  
Votes
None (candidate not yet proposed)  
Comments
 

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
36056 6355 CVE-2002-1973 BUGTRAQ:20020708 ALERT: Working Resources BadBlue #2 (DoS, Heap Overflow)  View
36057 6355 CVE-2002-1973 URL:http://archives.neohapsis.com/archives/bugtraq/2002-07/0082.html  View
36058 6355 CVE-2002-1973 BUGTRAQ:20020711 MFC ISAPI Framework Buffer Overflow  View
36059 6355 CVE-2002-1973 URL:http://archives.neohapsis.com/archives/bugtraq/2002-07/0135.html  View
36060 6355 CVE-2002-1973 BUGTRAQ:20020712 Re: MFC ISAPI Framework Buffer Overflow  View
36061 6355 CVE-2002-1973 URL:http://archives.neohapsis.com/archives/bugtraq/2002-07/0144.html  View
36062 6355 CVE-2002-1973 BUGTRAQ:20020712 MFC Overflow Test Code  View
36063 6355 CVE-2002-1973 URL:http://archives.neohapsis.com/archives/bugtraq/2002-07/0145.html  View
36064 6355 CVE-2002-1973 MSKB:310649  View
36065 6355 CVE-2002-1973 URL:http://support.microsoft.com/default.aspx?scid=kb;[LN];310649  View
36066 6355 CVE-2002-1973 MSKB:216562  View
36067 6355 CVE-2002-1973 URL:http://support.microsoft.com/default.aspx?scid=kb;[LN];216562  View
36068 6355 CVE-2002-1973 BID:5188  View
36069 6355 CVE-2002-1973 URL:http://www.securityfocus.com/bid/5188  View
36070 6355 CVE-2002-1973 XF:mfc-lib-isapi-bo(9529)  View

Related JVN