Spyware Doctor
Spyware Doctor with AntiVirus
PC Tools AntiVirus
PC Tools Internet Security
PC Tools Firewall Plus
ThreatFire
Spam Monitor
Registry Mechanic
Desktop Maestro
File Recover
Privacy Guardian
Spyware Doctor Enterprise
Help me choose
Web Request Can Cause Access Violation in ISA Server Web Proxy Service New
A security vulnerability exists in Microsoft ISA Server 2000 which could allow a remote attackers to cause a denial of service resulting in the failure of the Web Proxy service.
Issue
The ISA Server Web Proxy service does not correctly handle a certain type of web request if it exceeds a particular length. Processing such a request would result in an access violation, which would cause the Web Proxy service to fail. This would disrupt all ingoing and outgoing web proxy requests until the service was restarted.
Under most conditions, a user on the Internet could not exploit the vulnerability, as ISA Server will ignore external requests unless the Web Publishing feature is enabled. However, if an external attacker were able to persuade an internal user to visit a web page or open an HTML e-mail, it could be possible to embed an URL that would exploit the vulnerability from within the network.
Affected Products
- Microsoft ISA Server 2000
Download
Further Details
Source: Microsoft Corporation
Reference: Microsoft Corporation
Updated: April 17, 2001
>> Recommended Download - secure your PC from spyware, adware and malware now with Spyware Doctor <<
