OSVDB ID: 5993

Title: Microsoft Active Server Pages (ASP) Engine Malformed Cookie Handling Remote Information Disclosure

Info

Disclosure

May 05, 2004

Discovery

Unknown

Dates

Exploit

May 05, 2004

Solution

Unknown

Description

Microsoft Internet Information Server contains a flaw that may lead to an unauthorized information disclosure. The issue is triggered when an attacker sends a specially crafted HTTP GET request with the cookie variable set to an equal sign (=), which will disclose server information resulting in a loss of confidentiality.

Classification

Location: Remote / Network Access
Attack Type: Information Disclosure
Impact: Loss of Confidentiality, Loss of Integrity
Exploit: Exploit Public
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Currently, there are no known upgrades or patches to correct this issue. It is possible to correct the flaw by implementing the following workaround: Configure IIS to return custom error pages.

Products

Microsoft Corporation	IIS	4.0
		5.x
		6.0

References

Secunia Advisory ID: 11563
ISS X-Force ID: 16058
Microsoft Knowledge Base Article: 834452
Mail List Post: http://archives.neohapsis.com/archives/fulldisclosure/2004-05/0255.html
Other Advisory URL: http://www.appsecinc.com/resources/alerts/general/05-0001.html

Credit

Cesar Cerrudo -

Direct URL: http://osvdb.org/5993

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

Microsoft Corporation

IIS

References

Credit