Microsoft FrontPage 98 Server Extensions DVWSSR.DLL file buffer overflow
| frontpage-ext-dvwssr-bo (4333) |  High Risk |
Description:
Microsoft FrontPage Server Extensions installs the file DVWSSR.DLL in the /_vti_bin/_vti_aut directory on Windows Web servers. This file is normally used to connect to the site with the Microsoft InterDev program. A malicious user could overflow an unchecked buffer in the DVWSSR.DLL file to crash the server and execute arbitrary code.
Consequences:
Gain Access
Remedy:
Remove the DVWSSR.DLL file from the /_vti_bin/_vti_aut/ directory in the Web server's root.
References:
- Microsoft Security Bulletin MS00-025: Procedure Available to Eliminate "Link View Server-Side Component" Vulnerability.
- NTBugTraq Mailing List, Fri, 14 Apr 2000 20:40:47 -0300: DVWSSR.dll Buffer Overflow Vulnerability in Microsoft IIS 4.0 Web Servers.
- BID-1109: MS IIS FrontPage 98 Extensions Buffer Overflow Vulnerability
- CVE-2000-0260: Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the Link View Server-Side Component vulnerability.
- OSVDB ID: 282: Microsoft FrontPage dvwssr.dll Backdoor and Overflow
Platforms Affected:
- Microsoft FrontPage Server Extensions 98
- Microsoft Personal Web Server 4.0
- Microsoft Windows NT Option Pack 4.0
Reported:
Apr 17, 2000
The information within this database may change without notice. Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the author/distributor (IBM Internet Security Systems X-Force) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.
For corrections or additions please email xforce@iss.net