2090.txt

来自「This is the snapshot of Snot Latest Rule」· 文本 代码 · 共 76 行

TXT
76
字号 
Rule:--Sid:2090--Summary:This event is generated when an attempt is made to exploit a known vulnerability in Microsoft Internet Information Server is detected.--Impact:System compromise, web site defacement, loss of data, execution of code.--Detailed Information:A vulnerability exists in a component used by the Microsoft Internet Information Server 5.0 implementation of WebDAV. A specially crafted overly long URI when processed by the server, triggers a buffer overflow in ntdll.dll which results in a system compromise of the targeted host.The exploit only affects versions of IIS 5.0 running on Microsoft Windows 2000 prior to service pack 3. WebDAV is enabled by default on that platform.This event indicates that the vulnerability scanner nessus may have been used against a target server.--Affected Systems:Microsoft Internet Information Server 5.0 WebDAV on Windows 2000 prior to Service Pack 3.--Attack Scenarios:The attacker is using a publicly available exploit script.--Ease of Attack:Simple--False Positives:None Known--False Negatives:None Known--Corrective Action:Apply the appropriate vendor supplied patch or service pack.Disable WebDAV services.--Contributors:Sourcefire Vulnerability Research TeamBrian Caswell <bmc@sourcefire.com>Nigel Houghton <nigel.houghton@sourcefire.com>--Additional References:Microsoft:http://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Gaobothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/Nachihttp://www.microsoft.com/security/encyclopedia/details.aspx?name=win32/rbothttp://www.microsoft.com/security/encyclopedia/details.aspx?name=Win32/SdbotCERT:http://www.cert.org/advisories/CA-2003-09.htmlCVE:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CAN-2003-0109Microsoft Corporation:http://www.microsoft.com/technet/treeview/default.asp?url=/technet/security/bulletin/ms03-007.asphttp://www.microsoft.com/security/security_bulletins/ms03-007.asp--

2090.txt - 源码说明

本页面展示了「This is the snapshot of Snot Latest Rules」中的 2090.txt 源码文件,采用 文本 编程语言编写,共 76 行代码。您可以在线阅读完整代码内容,也可以返回资源详情页下载完整源码包进行本地学习和开发。

虫虫下载站收录了大量与snapshot相关的技术资源,包括源代码、技术文档、电路图等,是电子工程师和嵌入式开发者的专业学习平台。

⌨️ 快捷键说明

复制代码Ctrl + C
搜索代码Ctrl + F
全屏模式F11
增大字号Ctrl + =
减小字号Ctrl + -
显示快捷键?