CVE-2002-0147

Name of the Vulnerable Software and Affected Versions Internet Information Server (IIS) versions 4.0 through 5.1

Description The issue is related to a buffer overflow in the ASP data transfer mechanism, which can be exploited by remote attackers to cause a denial of service or execute code.

Recommendations For IIS versions 4.0 through 5.1, consider applying configuration changes to restrict access to the ASP data transfer mechanism until a fix is available. As a temporary workaround, restrict access to the vulnerable ASP components to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.