Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name	DNS:MS-ISA-CE
Severity	Major
Recommended	Yes
Recommended Action	Drop
Category	DNS
Keywords	Microsoft Internet Security Acceleration Arbitrary Code Execution
Release Date	2015/11/19
Update Number	2569
Supported Platforms	idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+

DNS: Microsoft Internet Security Acceleration Arbitrary Code Execution

This signature detects attempts to exploit a known flaw inMicrosoft ISA. It is believed that it cannot be exploited for code execution.

Extended Description

Microsoft Proxy Server 2.0 and Microsoft ISA Server 2000 (which is included in Small Business Server 2000 and Small Business Server 2003 Premium Edition) allows remote attackers to spoof trusted Internet content on a specially crafted webpage via spoofed reverse DNS lookup results.

Affected Products

Microsoft isa_server 2000 (sp1)
Microsoft isa_server 2000 (sp2)
Microsoft proxy_server 2.0 (sp1)
Microsoft windows_2003_server 2000
Microsoft windows_2003_server 2000 (:small_business_server)
Microsoft windows_2003_server 2003
Microsoft windows_2003_server 2003 (:small_business_server)

References

BugTraq: 11605
CVE: CVE-2004-0892

Signature Detail

This site is deprecated. Please CLICK HERE for latest updates

Short Name

Severity

Recommended

Recommended Action

Category

Keywords

Release Date

Update Number

Supported Platforms

DNS: Microsoft Internet Security Acceleration Arbitrary Code Execution

Extended Description

Affected Products

References