Microsoft fixes IIS FTP security bug
Microsoft has released a patch that eliminates a vulnerability in itsInternet Information Server (IIS) FTP service. This vulnerability could allow a denial of service attack against the IIS server or could allow arbitrary code to be executed
February 2, 1999
Microsoft has released a patch that eliminates a vulnerability in itsInternet Information Server (IIS) FTP service. This vulnerability could allow a denial of service attack against the IIS server or could allow arbitrary code to be executed directly on the server.
Microsoft recommends that customers who are using the FTP service in IIS 3.0 or 4.0 apply the patch.
For more information about this security bug, please refer to the MicrosoftKnowledge Base (KB) article Q188348, "Specially-Malformed FTP Requests CanCreate Denial of Service," on the Microsoft Web site
About the Author(s)
You May Also Like