Intrusion Prevention

MS.IIS.FTP.IAC.Remote.Code.Execution

Description

This indicates an attack attempt against a memory-corruption vulnerability in Windows 7 IIS.
The vulnerability is caused by an error when the vulnerable software parses a malformed FTP request. It allows remote attackers to crash vulnerable systems via sending a crafted FTP request.

Affected Products

Windows 7 IIS 7.5

Impact

System Compromise: Remote attackers can crash vulnerable systems.

Recommended Actions

Apply the patch, available from the vendor's web site:
http://www.microsoft.com/technet/security/Bulletin/MS11-004.mspx

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date	Version	Status	Detail
2020-12-02	16.972	Modified	Sig Added

References

http://www.exploit-db.com/exploits/15803/

ID	25362
Created	Dec 29, 2010
Updated	Nov 15, 2021
CVE ID
Risk
Exploit Prediction Score	91.69%
Default Action	drop
Active
Affected OS	Windows
Affected App	IIS
Profile Type	Buffer Errors

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Intrusion Prevention

MS.IIS.FTP.IAC.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Research Center

Services

Protect

Detect

Respond

Recover

Identify

Network Security

Cloud & Application Security

Endpoint Security

Security Operations

Threat Intelligence Center

Support Center

Resource Center

About

Intrusion Prevention

MS.IIS.FTP.IAC.Remote.Code.Execution

Description

Affected Products

Impact

Recommended Actions

Coverage

Version Updates

References

Threat Intelligence
Center