HTR.Chunked.TransferEncoding
Description
This indicates detection of an HTR request with chunked transfer encoding, which suggests a possible attempt to exploit a heap overflow vulnerability in Microsoft Internet Information Service (IIS) server.
IIS is a powerful web server that provides a highly reliable, manageable, and scalable Web application infrastructure. IIS chunked encoding allows data chunks of various sizes to be transmitted from web clients to web servers. HTR is a scripting language supported by IIS. There exists a heap overflow vulnerability in the processing of HTR request sessions due to an error in ISAPI extension that implements HTR.
Affected Products
Any unprotected IIS 4.0 and 5.0 system is vulnerable to the attack.
Impact
Attackers can execute arbitrary code on compromised systems.
Recommended Actions
Apply the appropriate patch from Microsoft (Microsoft Security Bulletin MS02-028)
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-05-08 | 14.609 | Sig Added |