IIS FTP STAT DoS v1.26 Vulnerability exploited: CVE-2002-0073 - BID-4482 Category: Denial of Service/Remote This module restarts the IIS server. This module restarts the IIS server. This exploit forces the IIS process inetinfo.exe to throw an unhandled exception. IIS' behavior depends on the operating system version, its configuration and the system-wide debugger specified in the registry. By default under Windows 2000 Advanced Server 2000 the server will automatically restart. Under Windows 2000 Professional a message box will pop up in the console and the server will not be restarted until a user presses [OK]. Supported Systems: Windows 2000 Professional - sp0 (i386) Windows 2000 Professional - sp1 (i386) Windows 2000 Professional - sp2 (i386) Windows 2000 Advanced Server - sp0 (i386) Windows 2000 Advanced Server - sp1 (i386) Windows 2000 Advanced Server - sp2 (i386) Microsoft IIS 5.0 under Microsoft Windows 2000 Professional Microsoft IIS 5.0 under Microsoft Windows 2000 Professional SP1 Microsoft IIS 5.0 under Microsoft Windows 2000 Professional SP2 Microsoft IIS 5.0 under Microsoft Windows 2000 Advanced Server Microsoft IIS 5.0 under Microsoft Windows 2000 Advanced Server SP1 Microsoft IIS 5.0 under Microsoft Windows 2000 Advanced Server SP2 This module is included in the latest version of CORE IMPACT, the first automated comprehensive penetration testing product for accurately identifying information security risks. Click here to learn more about the product.