CVE-2017-7269 — Microsoft Windows Server Buffer Overflow Vulnerability

Description

Microsoft Windows Server 2003 R2 contains a buffer overflow vulnerability in Internet Information Services (IIS) 6.0 which allows remote attackers to execute code via a long header beginning with "If: <http://" in a PROPFIND request.

How to fix CVE-2017-7269

No package mapping is available — consult the references below for vendor-specific guidance.

Is CVE-2017-7269 being exploited?

Yes — CVE-2017-7269 is on the CISA Known Exploited Vulnerabilities (KEV) catalog. Patch immediately.

Affected packages (0)

No package mapping in OSV.