Security Advisory

CVE-2009-3023

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2009-08-31 20:00:00

Last updated 2024-08-07 06:14:55

Assigner mitre

State PUBLISHED

Description

Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."

← Browse all CVEs View on cve.org ↗