VMware.Server.ISAPI.Extension.DoS

description-logoDescription

This indicates an attack attempt against a denial-of-service vulnerability in the ISAPI extension provided by VMware Server to extend support to IIS for running Perl scripts.
The vulnerability is caused by an error when the vulnerable software handles an overly large data to the ISAPI extension iisperl.dll in a POST request. It allows a remote attacker to terminate the IIS service and create a denial-of-service condition.

affected-products-logoAffected Products

VMWare Server 1.0.7 build 108231
VMWare Server 1.0.7

Impact logoImpact

Denial of Service

recomended-action-logoRecommended Actions

Update to version 1.0.7 build 108231 or later:
http://www.vmware.com/download/server/.

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2018-10-16 13.473 Sig Added