Description
Buffer overflow in the HTTP receiver function (BizTalkHTTPReceive.dll ISAPI) of Microsoft BizTalk Server 2002 allows attackers to execute arbitrary code via a certain request to the HTTP receiver.
Exploits (1)
exploitdb
WORKING POC
VERIFIED
by Cesar Cerrudo · textdoswindows
https://www.exploit-db.com/exploits/22553
References (2)
Core 2
Core References
Vendor Advisory vendor-advisory
x_refsource_ms
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-016
Mailing List mailing-list
x_refsource_bugtraq
http://marc.info/?l=bugtraq&m=105216866132289&w=2
Scores
EPSS
0.1862
EPSS Percentile
95.3%
Details
Status
published
Products (1)
microsoft/biztalk_server
2002 (2 CPE variants)
Published
May 12, 2003
Tracked Since
Feb 18, 2026