Remote Code Execution Vulnerabilities in FTP Service for Internet Information Services (IIS) - MS09-053| ID: oval:org.secpod.oval:def:2643 | Date: (C)2011-10-31 (M)2023-11-09 |
| Class: PATCH | Family: windows |
The host is missing an important security update according to Microsoft security bulletin, MS09-053. The update is required to fix remote code execution vulnerabilities. The flaws are present in the FTP Service in Microsoft Internet Information Services, which fails to handle the FTP Service list operations. Successful exploitation could allows an attackers to execute arbitrary code and take complete control over affected systems.
| Platform: |
| Microsoft Windows 2000 |
| Microsoft Windows Server 2003 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Vista |
| Microsoft Windows XP |
| Product: |
| Microsoft Internet Information Server (IIS) 5.0 |
| Microsoft Internet Information Server (IIS) 5.1 |
| Microsoft Internet Information Server (IIS) 6.0 |
| Microsoft Internet Information Server (IIS) 7.0 |
