Signature Detail

HTTP: Microsoft Internet Information Services Repeated Parameter DoS

This signature detects attempts to exploit a known vulnerability in Microsoft Internet Information Services (IIS). An attacker can send a specially crafted URL request to a Web page hosted by Internet Information Services. If successful, the attacker can interrupt service where the server would become un-responsive.

Extended Description

Microsoft IIS is prone to a remote denial-of-service vulnerability. An attacker can exploit this issue to force the affected application to become unresponsive, denying service to legitimate users. This issue affects IIS 5.1, 6.0, 7.0, and 7.5.

Affected Products

• Avaya Aura Conferencing 6.0 Standard
• Avaya CallPilot Unified Messaging
• Avaya Meeting Exchange - Client Registration Server
• Avaya Meeting Exchange - Recording Server
• Avaya Meeting Exchange - Streaming Server
• Avaya Meeting Exchange - Web Conferencing Server
• Avaya Meeting Exchange - Webportal
• Avaya Messaging Application Server 4
• Avaya Messaging Application Server 5
• Avaya Messaging Application Server MM 1.1
• Avaya Messaging Application Server MM 2.0
• Avaya Messaging Application Server MM 3.0
• Avaya Messaging Application Server MM 3.1
• Avaya Messaging Application Server
• Microsoft IIS 5.1
• Microsoft IIS 6.0
• Microsoft IIS 7.0
• Microsoft IIS 7.5

References

• BugTraq: 43140
• CVE: CVE-2010-1899