HTTP: IIS cgi-bin/cmd.exe Probe
This signature detects attempts to remotely execute cmd.exe.
Extended Description
An unchecked buffer exists in the code that handles environment strings within the command interpreter of Windows NT 4.0 and 2000, cmd.exe. If an unusually large environment variable is specified, cmd.exe will fail and the memory used will not be freed. By exploiting this repeatedly, an attacker could use up all free memory and cause a denial of service. This weakness could be exploited remotely via email, or in a situation where a batch file was used as a CGI script, and put user input into an environment variable.
Affected Products
Microsoft windows_nt_terminal_server
Short Name
HTTP:IIS:CGI-BIN-CMD-EXE
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2000-0331 IIS Probe bid:1135 cgi-bin/cmd.exe
Release Date
04/22/2003
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3375
False Positive
Unknown
Vendors
Microsoft
CVSS Score
5.0