Exploitation Summary
EIP tracks 4 public exploits for CVE-2003-0349.
PoCs published by Metasploit, firew0rker, hdm, including Metasploit module exploits/windows/isapi/ms03_022_nsiislog_post.
AI-analyzed exploit summary This is a Metasploit module exploiting a buffer overflow in the nsiislog.dll ISAPI filter (CVE-2003-0349) via a maliciously crafted POST request. It targets Windows 2000 and XP systems, bypassing the MS03-019 patch, and achieves remote code execution.
Description
Buffer overflow in the streaming media component for logging multicast requests in the ISAPI for the logging capability of Microsoft Windows Media Services (nsiislog.dll), as installed in IIS 5.0, allows remote attackers to execute arbitrary code via a large POST request to nsiislog.dll.
Exploits (4)
This is a Metasploit module exploiting a buffer overflow in the nsiislog.dll ISAPI filter (CVE-2003-0349) via a maliciously crafted POST request. It targets Windows 2000 and XP systems, bypassing the MS03-019 patch, and achieves remote code execution.
This exploit targets CVE-2003-0349, a buffer overflow in Windows Media Services (nsiislog.dll) to achieve remote command execution. It crafts a malicious HTTP POST request with shellcode to bind a shell on port 34816.
This exploit targets a buffer overflow vulnerability in Windows Media Services (CVE-2003-0349) via the nsiislog.dll ISAPI extension. It crafts a malicious HTTP POST request to execute arbitrary shellcode, binding a shell to port 34816.
This Metasploit module exploits a buffer overflow in the nsiislog.dll ISAPI filter (CVE-2003-0349) by sending a maliciously crafted POST request to trigger an SEH overwrite, leading to remote code execution on vulnerable Microsoft IIS servers.