7 matches found
MS11-004: Vulnerability in Internet Information Services (IIS) FTP service could allow remote code execution
MS11-004: Vulnerability in Internet Information Services IIS FTP service could allow remote code execution INTRODUCTION Microsoft has released security bulletin MS11-004. To view the complete security bulletin, visit one of the following Microsoft websites: Home users:...
Microsoft Windows IIS FTP Service Information Disclosure Vulnerability (2761226)
This host is missing a moderate security update according to Microsoft Bulletin MS12-073. OpenVAS Vulnerability Test $Id: secpodms12-073.nasl 5346 2017-02-19 08:43:11Z cfi $ Microsoft Windows IIS FTP Service Information Disclosure Vulnerability 2761226 Authors: Rachana Shetty Copyright: Copyright...
Internet Information Services (IIS) FTP Service Remote Code Execution Vulnerability (2489256)
This host is missing a critical security update according to Microsoft Bulletin MS11-004. OpenVAS Vulnerability Test $Id: secpodms11-004.nasl 7582 2017-10-26 11:56:51Z cfischer $ Internet Information Services IIS FTP Service Remote Code Execution Vulnerability 2489256 Authors: Sooraj KS Copyright...
MS11-004: Vulnerability in Internet Information Services (IIS) FTP Service Could Allow Remote Code Execution (2489256)
The IIS FTP service running on the remote host has a heap-based buffer overflow vulnerability. The 'TELNETSTREAMCONTEXT::OnSendData' function fails to properly sanitize user input, resulting in a buffer overflow. An unauthenticated, remote attacker can exploit this to execute arbitrary code. C...
Microsoft IIS FTP Server Encoded Response Overflow Trigger
This module triggers a heap overflow when processing a specially crafted FTP request containing Telnet IAC 0xff bytes. When constructing the response, the Microsoft IIS FTP Service overflows the heap buffer with 0xff bytes. This issue can be triggered pre-auth and may in fact be exploitable for...
VulnCheck KEV: CVE-2009-3023
Buffer overflow in the FTP Service in Microsoft Internet Information Services IIS 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST NAME LIST command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."...
Microsoft IIS FTP Service Remote Code Execution Vulnerabilities (975254)
This host is missing a critical security update according to Microsoft Bulletin MS09-053. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...