Multiple vulnerabilities in Microsoft Internet Information Services - MS12-073| ID: oval:org.secpod.oval:def:7907 | Date: (C)2012-11-16 (M)2022-10-10 |
| Class: PATCH | Family: windows |
The host is missing a critical security update according to Microsoft security bulletin, MS12-073. The update is required to fix multiple vulnerabilities. The flaws are present in Internet Information Services (IIS), which fails to properly handle specially crafted FTP commands. Successful exploitation could allow information disclosure if an attacker sends specially crafted FTP commands to the server.
| Platform: |
| Microsoft Windows Vista |
| Microsoft Windows 7 |
| Microsoft Windows Server 2008 |
| Microsoft Windows Server 2008 R2 |
| Product: |
| Microsoft Internet Information Services 7.0 |
| Microsoft Internet Information Services 7.5 |
