Short Name |
APP:MISC:IIS-PHONEBOOK |
---|---|
Severity |
Major |
Recommended |
No |
Recommended Action |
Drop |
Category |
APP |
Keywords |
Microsoft IIS Phone Book Service Overflow |
Release Date |
2016/10/25 |
Update Number |
2796 |
Supported Platforms |
idp-4.0+, isg-3.0+, j-series-9.5+, mx-11.4+, srx-12.1+, srx-branch-12.1+, vmx-17.4+, vsrx-12.1+, vsrx3bsd-18.2+ |
This signature detects attempts to exploit a known vulnerability in the Microsoft Internet Information Services (IIS) Phone Book Service. A successful attack can lead to a buffer overflow and arbitrary remote code execution within the context of the user.
Buffer overflow in Microsoft Phone Book Service allows local users to execute arbitrary commands, aka the "Phone Book Service Buffer Overflow" vulnerability.