Description
Microsoft ISA Server 2000 allows remote attackers to poison the ISA cache or bypass content restriction policies via a malformed HTTP request packet containing multiple Content-Length headers.
Affected products
- Microsoft / isa_server2000 – 2000
References
- MISChttps://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A1145
- MISChttps://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-034
- MISChttp://www.securityfocus.com/bid/13956
- MISChttp://securitytracker.com/id?1014193
- VENDOR_ADVISORYhttp://secunia.com/advisories/15693/