Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes IIS to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."

Threat-Mapped Scoring

Score: 0.0

Priority: Unclassified

EPSS

Score: 0.54337
Percentile: 0.97888

CVSS Scoring

Mapped CWE(s)

• CWE-444 : Inconsistent Interpretation of HTTP Requests ('HTTP Request/Response Smuggling')

All CAPEC(s)

CAPEC(s) with Mapped TTPs

Mapped ATT&CK TTPs

Affected Products

• cpe:2.3:a:microsoft:internet_information_services:5.0:*:*:*:*:*:*:*
• cpe:2.3:a:microsoft:internet_information_services:6.0:*:*:*:*:*:*:*

← Back to Home