Vulnerabilities > CVE-2005-1215 - Unspecified vulnerability in Microsoft ISA Server 2000
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Nessus
| NASL family | Windows : Microsoft Bulletins |
| NASL id | SMB_NT_MS05-034.NASL |
| description | The remote host is missing a cumulative update for ISA Server 2000 that fixes several security flaws that could allow an attacker to elevate his privileges. |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 18487 |
| published | 2005-06-14 |
| reporter | This script is Copyright (C) 2005-2018 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/18487 |
| title | MS05-034: Cumulative Update for ISA Server 2000 (899753) |
Oval
| accepted | 2011-04-25T04:00:03.443-04:00 | ||||||||||||
| class | vulnerability | ||||||||||||
| contributors |
| ||||||||||||
| description | Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers. | ||||||||||||
| family | windows | ||||||||||||
| id | oval:org.mitre.oval:def:1145 | ||||||||||||
| status | accepted | ||||||||||||
| submitted | 2005-06-23T04:00:00.000-04:00 | ||||||||||||
| title | ISA Server Poison Cache Vulnerability | ||||||||||||
| version | 5 |