Detections
Analytics

Microsoft IIS 5.0 WebDAV Malformed PROPFIND Request Remote DoS

medium Nessus Plugin ID 10667

Synopsis

The remote web server is vulnerable to a denial of service attack.

Description

The remote version of the IIS web server contains a bug in its implementation of the WebDAV protocol that could allow an attacker to temporarily disable this service remotely.

To exploit this flaw, an attacker would require the ability to send a malformed PROPFIND request to the remote host, although this would not in turn necessarily require authentication.

Solution

Microsoft has released a patch for IIS 5.0.

See Also

https://docs.microsoft.com/en-us/security-updates/SecurityBulletins/2001/ms01-016

Plugin Details

Severity: Medium

ID: 10667

File Name: iis_propfind2.nasl

Version: 1.53

Type: remote

Family: Web Servers

Published: 5/13/2001

Updated: 5/28/2024

Configuration: Enable paranoid mode, Enable thorough checks

Supported Sensors: Nessus

Risk Information

VPR

Risk Factor: Medium

Score: 4.4

CVSS v2

Risk Factor: Medium

Base Score: 5

Temporal Score: 3.9

Vector: CVSS2#AV:N/AC:L/Au:N/C:N/I:N/A:P

Vulnerability Information

CPE: cpe:/a:microsoft:iis

Required KB Items: Settings/ParanoidReport

Excluded KB Items: Settings/disable_cgi_scanning

Exploit Available: true

Exploit Ease: Exploits are available

Vulnerability Publication Date: 3/8/2001

Reference Information

CVE: CVE-2001-0151

BID: 2453

MSFT: MS01-016

MSKB: 291845