← CVECheck
HomeVulnerabilities

CVE-2002-0072 — MEDIUM severity vulnerability (The w3svc.dll ISAPI filter in Front Page Server Extensions a)

The w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause a denial of service (crash) when the URL parser accesses a null pointer.

CVE IDCVE-2002-0072
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:N/I:N/A:P
CWENVD-CWE-Other
StatusModified
Published2002-04-22
Last modified2026-04-16
DescriptionThe w3svc.dll ISAPI filter in Front Page Server Extensions and ASP.NET for Internet Information Server (IIS) 4.0, 5.0, and 5.1 does not properly handle the error condition when a long URL is provided, which allows remote attackers to cause a denial of service (crash) when the URL parser accesses a null pointer.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →