CVE-2003-0702

Name of the Vulnerable Software and Affected Versions: ISS Server Sensor versions 7.0 XPU 20.16 through 20.18

Description: The issue allows remote attackers to cause a denial of service (crash) and possibly execute arbitrary code in Internet Information Server (IIS) via a certain URL through SSL.

Recommendations: For ISS Server Sensor version 7.0 XPU 20.16, update to version 20.19 or later to resolve the issue. For ISS Server Sensor version 7.0 XPU 20.18, update to version 20.19 or later to resolve the issue. As a temporary workaround, consider restricting access to the SSL URL to minimize the risk of exploitation.