MS.IIS.FTP.NLST.DoS
Description
This indicates an attack attempt to exploit a DoS vulnerability in Microsoft windows IIS server.
The Microsoft IIS FTP service crashes due to stack exhaustion when handling crafted NLST command. Remote attackers could exploit this to cause denial of service on the IIS server.
Affected Products
Microsoft Internet Information Services 5.0
Microsoft Internet Information Services 5.1
Microsoft Internet Information Services 6.0
Microsoft Internet Information Services 7.0
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Apply the suggested workaround from Microsoft.
http://www.microsoft.com/technet/security/advisory/975191.mspx
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-01-10 | 14.521 | Sig Added |