CVE-2010-2730

CWE-119Buffer Overflow3 documents3 sources
Severity
9.3CRITICAL
EPSS
8.1%
top 7.86%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Information Services
Timeline
PublishedSep 15
Latest updateMay 13

Description

Buffer overflow in Microsoft Internet Information Services (IIS) 7.5, when FastCGI is enabled, allows remote attackers to execute arbitrary code via crafted headers in a request, aka "Request Header Buffer Overflow Vulnerability."

CVSS vector

AV:N/AC:M/C:C/I:C/A:CExploitability: 8.6 | Impact: 10.0

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-4xrq-3wgc-c88v: Buffer overflow in Microsoft Internet Information Services (IIS) 72022-05-13
CVEList
CVE-2010-2730: Buffer overflow in Microsoft Internet Information Services (IIS) 72010-09-15
CVE-2010-2730 (CRITICAL CVSS 9.3) | Buffer overflow in Microsoft Intern | cvebase.io