Microsoft » Foundation Class Library : Security Vulnerabilities, CVEs, CVSS score >= 1
Buffer overflow in CHttpServer::OnParseError in the ISAPI extension (Isapi.cpp) when built using Microsoft Foundation Class (MFC) static libraries in Visual C++ 5.0, and 6.0 before SP3, as used in multiple products including BadBlue, allows remote attackers to cause a denial of service (access violation and crash) and possibly execute arbitrary code via a long query string that causes a parsing error.
Max CVSS
7.5
EPSS Score
14.87%
Published
2002-12-31
Updated
2018-08-13
1 vulnerabilities found