Vulnerabilities > CVE-2002-1122 - Buffer Overflow vulnerability in ISS Internet Scanner 6.2.1

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

iss

NVD

Published: 2002-09-24

Updated: 2008-09-10

Summary

Buffer overflow in the parsing mechanism for ISS Internet Scanner 6.2.1, when using the license banner HTTP check, allows remote attackers to execute arbitrary code via a long web server response.

Vulnerable Configurations

Part	Description	Count
Application	Iss ISS Internet Scanner 6.2.1	1

References

http://bvlive01.iss.net/issEn/delivery/xforce/alertdetail.jsp?oid=21165
http://www.iss.net/security_center/static/10130.php
http://www.osvdb.org/3150
http://www.securityfocus.com/bid/5738