Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » Microsoft BizTalk Server 2002 BizTalkHTTPReceive.dll buffer overflow

Microsoft BizTalk Server 2002 BizTalkHTTPReceive.dll buffer overflow

by Mario Miri on May 16th, 2003 A boundary condtion error exists in Microsoft BizTalk Server 2002 which allows the attacker to execute code in security context of underlying IIS server.


Vulnerable:
Microsoft BizTalk Server 2002 Developer Edition
Microsoft BizTalk Server 2002 Enterprise Edition


Solution:
Patch available from:
http://microsoft.com/downloads/details.aspx?FamilyId=A05344FE-2622-4887-AA45-3DE7C4ED3C75&displaylang=en


Discovered by:
Cesar Cerrudo


Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »