Microsoft Internet Security and Acceleration (ISA) Server 2004 logs unusual ASCII characters in the Host header, including the tab, which allows remote attackers to manipulate portions of the log file and possibly leverage this for other attacks.
References
Configurations
History
21 Nov 2024, 00:24
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/archive/1/432947/30/5190/threaded - | |
References | () http://www.securityfocus.com/archive/1/433074/30/5190/threaded - | |
References | () http://www.securityfocus.com/archive/1/433141/30/5160/threaded - | |
References | () http://www.securityfocus.com/archive/1/433350/30/5100/threaded - | |
References | () https://exchange.xforce.ibmcloud.com/vulnerabilities/26233 - |
Information
Published : 2007-02-23 03:28
Updated : 2024-11-21 00:24
NVD link : CVE-2006-7027
Mitre link : CVE-2006-7027
CVE.ORG link : CVE-2006-7027
JSON object : View
Products Affected
microsoft
- isa_server
CWE