CVE-2009-3023

2009-08-31T16:30:01
ID CVE-2009-3023
Type cve
Reporter NVD
Modified 2017-09-18T21:29:24

Description

Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."