Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request.
Affected Software
| Name | Vendor | Start Version | End Version |
|---|---|---|---|
| Frontpage_server_extensions | Microsoft | 2000 (including) | 2000 (including) |
| Frontpage_server_extensions | Microsoft | 2002 (including) | 2002 (including) |
| Sharepoint_team_services | Microsoft | 2002 (including) | 2002 (including) |
References
- http://marc.info/?l=bugtraq\u0026m=106865318904055\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=106862654906759\u0026w=2
- http://secunia.com/advisories/10195
- http://www.kb.cert.org/vuls/id/279156
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-051
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13674
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A364
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A366
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A367
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A699
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A743
- http://marc.info/?l=bugtraq\u0026m=106865318904055\u0026w=2
- http://marc.info/?l=ntbugtraq\u0026m=106862654906759\u0026w=2
- http://secunia.com/advisories/10195
- http://www.kb.cert.org/vuls/id/279156
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-051
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13674
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A364
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A366
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A367
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A699
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A743