NetProwler 3.5.1 Security Update 8

June 20, 2001

NetProwler 3.5.1 Security Update 8

Description

NetProwler 3.5.1 SU8 introduces a signature that detects attempts to exploit the Microsoft Windows NT/2000 IIS Server versions 4.0/5.0. An attacker can gain system-level, remote access by overflowing a buffer in the idq.dll used by the ISAPI .ida and .idq file extensions. You may obtain NetProwler 3.5.1 SU8 through the product's auto update feature.

Security Update 8 Signatures

HTTP_IIS_ISAPI_Extension

This signature detects attempts to overflow the buffer in the ISAPI extensions of the IIS server.

http://www.cve.mitre.org/cgi-bin/cvename.cgi?name=2001-0500

Last modified on: Wednesday, 26-Sep-01 12:07:58