A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests, aka 'Microsoft IIS Server Denial of Service Vulnerability'.

A denial of service exists in Microsoft IIS Server when the optional request filtering feature improperly handles requests. An attacker who successfully exploited this vulnerability could perform a temporary denial of service against pages configured to use request filtering.
To exploit this vulnerability, an attacker could send a specially crafted request to a page utilizing request filtering.
The update addresses the vulnerability by changing the way certain requests are processed by the filter.

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L

https://msrc.microsoft.com/update-guide/vulnerability/CVE-2019-0941

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0941

https://portal.msrc.microsoft.com/en-US/security-guidance/advisory/CVE-2019-0941 Types: Patch, Vendor Advisory