Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2009-3023

CWE-120 — Classic Buffer Overflow7 documents5 sources

Severity

9.0CRITICAL

EPSS

79.3%

top 0.93%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Internet Information Server

Timeline

PublishedAug 31

Latest updateMay 2

Description

Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5.0 through 6.0 allows remote authenticated users to execute arbitrary code via a crafted NLST (NAME LIST) command that uses wildcards, leading to memory corruption, aka "IIS FTP Service RCE and DoS Vulnerability."

CVSS vector

AV:N/AC:L/C:C/I:C/A:CExploitability: 8.0 | Impact: 10.0

Affected Packages1 packages

▶NVDmicrosoft/internet_information_server5.0 — 6.0

Patches

Patch: docs.microsoft.com ↗Patch: docs.microsoft.com ↗

🔴Vulnerability Details

GHSA

GHSA-ww4p-6452-jmh8: Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5↗2022-05-02

▶

CVEList

CVE-2009-3023: Buffer overflow in the FTP Service in Microsoft Internet Information Services (IIS) 5↗2009-08-31

▶

VulnCheck

Microsoft Internet Information Services (IIS) Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')↗2009

▶

💥Exploits & PoCs

Exploit-DB

Microsoft IIS FTP Server - NLST Response Overflow (MS09-053) (Metasploit)↗2010-11-12

▶

Exploit-DB

Microsoft IIS 5.0 FTP Server (Windows 2000 SP4) - Remote Stack Overflow↗2009-09-01

▶

Exploit-DB

Microsoft IIS 5.0/6.0 FTP Server (Windows 2000) - Remote Stack Overflow↗2009-08-31

▶