Peaches Posted September 2, 2009 Report Share Posted September 2, 2009 FTP service of Microsoft IIS 5 and 6 vulnerable to attacks - Update 2 An exploit which allegedly enables attackers to obtain system privileges on a Microsoft server via its FTP service has appeared on the Full Disclosure mailing list. According to its author, "Kingcope", the vulnerability affects the FTP service of Microsoft's Internet Information Services 5 server suite, and apparently even affects version 6, which has "Stack Cookie Protection". No patch for the vulnerability is available so far.The source code of the exploit was published as a PDF file. First reports by independent security experts have confirmed that it is functional. The exploit contains shell code which is tailored for Windows 2000 and uses an anonymous FTP log-in to connect to the server under attack. It creates two directories on this server, via the MKD command. The actual attack appears to be triggered by the NLST (name list) command for displaying the content of a directory. Since the exploit's exact operating principles are as yet unknown, the only apparent way of reliably protecting vulnerable systems is to grant FTP access to trusted users only.details at Heise security - http://www.h-online.com/security/FTP-servi...2--/news/114127 Quote Link to post Share on other sites
Recommended Posts
Join the conversation
You can post now and register later. If you have an account, sign in now to post with your account.