← CVECheck
HomeVulnerabilities

CVE-2003-0224 — HIGH severity vulnerability (Buffer overflow in ssinc.dll for Microsoft Internet Informat)

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."

CVE IDCVE-2003-0224
SeverityHIGH
CVSS score10.0
CVSS vectorAV:N/AC:L/Au:N/C:C/I:C/A:C
CWENVD-CWE-Other
StatusModified
Published2003-06-09
Last modified2026-04-16
DescriptionBuffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code via a web page with a Server Side Include (SSI) directive with a long filename, aka "Server Side Include Web Pages Buffer Overrun."
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →