Summary
A flaw exists in the ISA Server DNS intrusion detection application filter.
An attacker could exploit the vulnerability by sending a specially formed request to an ISA Server computer that is publishing a DNS server, which could then result in a denial of service to the published DNS server.
Solution
see http://www.microsoft.com/technet/security/bulletin/ms03-009.mspx
Severity
Classification
-
CVE CVE-2003-0011 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- Microsoft OneNote Information Disclosure Vulnerability (2816264)
- Microsoft SharePoint Business Productivity Server RCE Vulnerability (2904244)
- Microsoft IIS FTP Connection Status Request Denial of Service Vulnerability
- Buffer Overflow in Windows Troubleshooter ActiveX Control (826232)
- Microsoft Host Integration Server Denial of Service Vulnerabilities (2607670)