CVE-2005-1215

Name of the Vulnerable Software and Affected Versions Microsoft ISA Server 2000

Description The issue allows remote attackers to poison the cache or bypass content restriction policies. This is achieved by sending a malformed HTTP request packet that contains multiple Content-Length headers.

Recommendations For Microsoft ISA Server 2000, consider restricting access to the server until a fix is available, and review the server's content restriction policies to minimize potential impact. As a temporary workaround, consider implementing additional validation on incoming HTTP request packets to detect and prevent those with multiple Content-Length headers.