Short Name |
FTP:MS-FTP:IIS7-5-DOS |
---|---|
Severity |
Medium |
Recommended |
No |
Recommended Action |
Drop |
Category |
FTP |
Keywords |
Microsoft IIS 7.5 Unauthenticated Denial of Service |
Release Date |
2010/12/22 |
Update Number |
1837 |
Supported Platforms |
idp-4.0+, isg-3.4+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+ |
This signature detects attempts to exploit a known vulnerability in Microsoft Internet Information Server version 7.5, which is included in Windows 7. An unauthenticated user can send a malformed request and crash the process, causing a denial of service (DoS).
Microsoft IIS is prone to a buffer-overflow vulnerability affecting the application's FTP service. Successful exploits may allow attackers to execute arbitrary code in the context of the application. Failed exploit attempts will likely crash the FTP service, resulting in denial-of-service conditions. IIS 7.5 is vulnerable; other versions may also be affected.