Financial Daily from THE HINDU group of publications
Wednesday, Oct 30, 2002
Financial Daily from THE HINDU group of publications Wednesday, Oct 30, 2002 |
|
|
|
|
|
eWorld
-
Computer Usage Columns - Tip Off FrontPage Tips: Buffer overrun in Interpreter
The SmartHTML Interpreter (shtml.dll) is part of the FrontPage Server Extensions (FPSE) and provides support for Web forms and other FrontPage-based dynamic content. The interpreter contains a flaw that could be exposed when processing a request for a particular type of Web file, if the request had certain specific characteristics. This flaw affects the two versions of FrontPage Server Extensions differently. On FrontPage Server Extensions 2000, such a request would cause the interpreter to consume most or all CPU availability until the Web service was restarted. An attacker could use this vulnerability to conduct a denial of service attack against an affected Web server. On FrontPage Server Extensions 2002, the same type of request could cause a buffer overrun, potentially allowing an attacker to run code of his choice.
C. Ramesh
Send this article to Friends by
E-Mail
|
Stories in this Section |
|
The Hindu Group: Home | About Us | Copyright | Archives | Contacts | Subscription Group Sites: The Hindu | Business Line | The Sportstar | Frontline | Home |
Copyright © 2002, The
Hindu Business Line. Republication or redissemination of the contents of
this screen are expressly prohibited without the written consent of
The Hindu Business Line
|