Parcifal Aertssen

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Information Services (IIS) version 5.0 **Description** The issue allows remote attackers to obtain sensitive information without detection because it does not log requests that use the TRACK method. **Recommendations** For Microsoft Internet Information Services (IIS) version 5.0, consider disabling the TRACK method to prevent exploitation until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Microsoft Internet Information Services (IIS) version 5.0 **Description** The issue allows remote attackers to steal cookies and authentication credentials or bypass the HttpOnly protection mechanism. This is achieved by using the undocumented TRACK method to read the contents of the HTTP headers returned in the response, similar to cross-site tracing (XST) using HTTP TRACE. **Recommendations** For Microsoft Internet Information Services (IIS) version 5.0, consider disabling the TRACK method to prevent exploitation until a patch is available. Restrict access to sensitive information and authentication credentials to minimize the risk of theft.

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Information Server (IIS) versions 4.0 through 5.0 Description: The issue concerns the ASP function Response.AddHeader in Microsoft Internet Information Server, which does not limit memory requests when constructing headers. This allows remote attackers to generate a large header, causing a denial of service due to memory consumption with an ASP page. Recommendations: For Microsoft Internet Information Server (IIS) versions 4.0 through 5.0, consider restricting access to ASP pages until a fix is available. As a temporary workaround, limit the size of headers that can be added by the Response.AddHeader function to prevent excessive memory consumption. At the moment, there is no information about a newer version that contains a fix for this vulnerability.