Description

Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."

Remediation

References

CVE-2009-3023

Related Vulnerabilities

phpMyAdmin Other Vulnerability (CVE-2005-1392)

WordPress Plugin Responsive Filterable Portfolio Unspecified Vulnerability (1.0.8)

MySQL CVE-2020-2898 Vulnerability (CVE-2020-2898)

WordPress Plugin TweetScribe Cross-Site Request Forgery (1.1)

Internet Information Services Other Vulnerability (CVE-2011-5279)

Severity

Critical

Classification

CVE-2009-3023 CWE-120

Tags

Missing Update Known Vulnerabilities