Microsoft IIS is prone to a remote stack-based buffer-overflow vulnerability affecting the application’s FTP server.
An attacker can exploit this issue to execute arbitrary code within the context of the affected application. Failed exploit attempts will result in a denial-of-service condition.
This issue affects the following:
IIS 6.0 (denial of service only)
Other versions may also be affected.
NOTE: This issue cannot be exploited to execute arbitrary code on IIS 6.0.
Published: Aug 31 2009 12:00AM
Updated: Aug 31 2009 11:52PM