CVE-2002-0869

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Information Server (IIS) versions 4.0 through 5.1

Description: The issue allows remote attackers to gain privileges by executing an out of process application that acquires LocalSystem privileges. This is related to an unknown vulnerability in the hosting process (dllhost.exe).

Recommendations: For Microsoft Internet Information Server (IIS) versions 4.0 through 5.1, consider restricting access to the dllhost.exe process to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.