CVE-2005-2089
Microsoft IIS 5.0/6.0 HTTP Request Smuggling via Transfer-Encoding and Content-Length
Title source: llmDescription
Microsoft IIS 5.0 and 6.0 allows remote attackers to poison the web cache, bypass web application firewall protection, and conduct XSS attacks via an HTTP request with both a "Transfer-Encoding: chunked" header and a Content-Length header, which causes IIS to incorrectly handle and forward the body of the request in a way that causes the receiving server to process it as a separate HTTP request, aka "HTTP Request Smuggling."
References (4)
Core 4
Core References
Third Party Advisory, VDB Entry vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/42899
Broken Link x_refsource_misc
http://www.securiteam.com/securityreviews/5GP0220G0U.html
Broken Link x_refsource_misc
http://www.watchfire.com/resources/HTTP-Request-Smuggling.pdf
Mailing List, Third Party Advisory mailing-list
x_refsource_bugtraq
http://seclists.org/lists/bugtraq/2005/Jun/0025.html
Scores
EPSS
0.3097
EPSS Percentile
98.0%
Details
CWE
CWE-444
Status
published
Products (2)
microsoft/internet_information_services
5.0
microsoft/internet_information_services
6.0
Published
Jul 05, 2005
Tracked Since
Feb 18, 2026