virus logo Intrusion Prevention

MS.IIS.STAT.Globbing.DoS

description-logoDescription

This indicates an attack attempt against a denial-of-service vulnerability in the Microsoft Internet Information Services (IIS) server's implementation of the File Transfer Protocol (FTP).
Microsoft IIS is a web server that provides a Web application infrastructure. There is a vulnerability in IIS server's implementation of FTP that allows an attacker to crash a target system by passing it an FTP STAT command with a large number of globbing (wildcard) characters.

affected-products-logoAffected Products

Unprotected Microsoft IIS 4, 5, 5.1, some CISCO equipment, VisNetic FTP server and Titan FTP server are vulnerable to the attack.

Impact logoImpact

An attacker can cause a denial of service on a target system.

recomended-action-logoRecommended Actions

See Microsoft Security Bulletin MS02-018 for the patch information.

Coverage

IPS (Regular DB)
IPS (Extended DB)
ID 12260
Created Sep 11, 2006
Updated Jun 09, 2022
CVE ID
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
Exploit Prediction Score 63.97%
Default Action drop
Active
Affected OS Windows
Affected App IIS
Profile Type DoS