CVE-2003-0718

Name of the Vulnerable Software and Affected Versions IIS versions 5.0 through 6.0

Description The issue allows remote attackers to cause a denial of service, resulting in memory and CPU exhaustion, and application crash, via a PROPFIND request with an XML message containing XML elements with a large number of attributes.

Recommendations For IIS versions 5.0 through 6.0, consider restricting access to the WebDAV Message Handler as a temporary workaround until a patch is available.