HTTP: Microsoft Internet Information Services OData web applications Protocol Denial Of Service
This signature detects attempts to exploit a known vulnerability in the Microsoft Internet Information Services(IIS) OData protocol. An attacker can send a specially crafted URL request to a Web page hosted by Internet Information Services. If successful, the attacker can interrupt service where the server would become un-responsive.
Extended Description
The WCF Replace function in the Open Data (aka OData) protocol implementation in Microsoft .NET Framework 3.5, 3.5 SP1, 3.5.1, and 4, and the Management OData IIS Extension on Windows Server 2012, allows remote attackers to cause a denial of service (resource consumption and daemon restart) via crafted values in HTTP requests, aka "Replace Denial of Service Vulnerability."
References
CVE: CVE-2013-0005
Short Name
HTTP:IIS:ODATA-PROTOCOL-DOS
Severity
Major
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2013-0005 Denial Information Internet Microsoft OData Of Protocol Service Services applications web
Release Date
01/07/2013
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3659
False Positive
Unknown
CVSS Score
7.8