SSL: IIS SSL Malformed Cipher DoS
This signature detects attempts to exploit a known vulnerability against Microsoft Internet Information Server (IIS) Private Communications Transport. IIS versions 4.0 through 6.0 are vulnerable. Attackers can send a malformed SSL request to a Microsoft IIS server, causing the service to crash or execute arbitrary code.
Extended Description
Buffer overflow in the Private Communications Transport (PCT) protocol implementation in the Microsoft SSL library, as used in Microsoft Windows NT 4.0 SP6a, 2000 SP2 through SP4, XP SP1, Server 2003, NetMeeting, Windows 98, and Windows ME, allows remote attackers to execute arbitrary code via PCT 1.0 handshake packets.
Affected Products
Microsoft windows_98
Short Name
SSL:CPHR-DOS
Severity
Critical
Recommended
False
Recommended Action
Drop
Category
SSL
Keywords
CVE-2003-0719 Cipher DoS IIS Malformed SSL bid:8459
Release Date
04/21/2004
Supported Platforms
srx-branch-19.3
vsrx3bsd-19.2
srx-19.4
vsrx3bsd-19.4
srx-branch-19.4
vsrx-19.4
vsrx-19.2
srx-19.3
srx-branch-12.3
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx-12.3
vmx-19.3
srx-12.3
Sigpack Version
3761
False Positive
Unknown
Vendors
Microsoft
CVSS Score
7.5