← CVECheck
HomeVulnerabilities

CVE-2002-0071 — HIGH severity vulnerability (Buffer overflow in the ism.dll ISAPI extension that implemen)

Buffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.

CVE IDCVE-2002-0071
SeverityHIGH
CVSS score7.5
CVSS vectorAV:N/AC:L/Au:N/C:P/I:P/A:P
CWENVD-CWE-Other
StatusModified
Published2002-04-22
Last modified2026-04-16
DescriptionBuffer overflow in the ism.dll ISAPI extension that implements HTR scripting in Internet Information Server (IIS) 4.0 and 5.0 allows attackers to cause a denial of service or execute arbitrary code via HTR requests with long variable names.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →