Simplify your laptop buying
- Quick specs
- Price: Update
- Operating system: Windows 98/2000/XP
- Date added: April 30, 2001
- Total Downloads: 43
- Downloads last week: 1
- See full specifications
- Average user rating: Be the first to rate this product!
Publisher's description
From Microsoft :This update resolves the "Unchecked Buffer in ISAPI Extension Could Enable Compromise of IIS 5.0 Server" security vulnerability in Windows 2000 and is discussed in Microsoft Security Bulletin MS01-023. Download now to prevent a malicious user from taking control of your Web server.
The Internet Printing ISAPI (Internet Services Application Programming Interface) extension for Windows 2000 has an unchecked buffer (a temporary data storage area that has a limited capacity) in the code that processes users' print requests. A specifically malformed request from a malicious user can cause the buffer to overflow. Doing so grants the malicious user Local System privileges, allowing him to take complete control of the Web server. This update eliminates the vulnerability by ensuring that the ISAPI extension checks input correctly.
Note Although the affected component is not part of Internet Information Services (IIS) 5.0, the vulnerability is present only when IIS 5.0 is running.
More popular File Server Software downloads
- 574 downloads 1. Azureus Installer
- 542 downloads 2. WampServer
- 306 downloads 3. Nofeel FTP Server (32-bit)
- 262 downloads 4. Exceed
- 201 downloads 5. Windows Server 2003
- See all File Server Software downloads
User reviews
Write your own review Be the first one to review Microsoft Internet Information Server 5.0 Patch: Unchecked Buffer in ISAPI Extension Update and share your experience with the CNET community!
Submit your review
- See more CNET content tagged:
- Microsoft IIS 5.0,
- Microsoft IIS Server,
- Microsoft Windows 2000,
- Web server,
- malicious user
