Home » Hacking News » Microsoft BizTalk Server 2002 BizTalkHTTPReceive.dll buffer overflow

Microsoft BizTalk Server 2002 BizTalkHTTPReceive.dll buffer overflow

by Mario Miri on May 16th, 2003 A boundary condtion error exists in Microsoft BizTalk Server 2002 which allows the attacker to execute code in security context of underlying IIS server.

Vulnerable:
Microsoft BizTalk Server 2002 Developer Edition
Microsoft BizTalk Server 2002 Enterprise Edition

Solution:
Patch available from:
http://microsoft.com/downloads/details.aspx?FamilyId=A05344FE-2622-4887-AA45-3DE7C4ED3C75&displaylang=en

Discovered by:
Cesar Cerrudo

From the forum

The forums are now OPEN AGAIN!

Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Users login

JOIN XATRIX

Microsoft BizTalk Server 2002 BizTalkHTTPReceive.dll buffer overflow

Related articles

Advisories

Vulnerabilities

From the forum

Newsletter signup

Free E-books

Contact