0-day vulnerability in IIS FTP confirmed

Microsoft has confirmed the 0-day vulnerability in IIS FTP Service that could allow for remote code execution and posted a Security Advisory.

In short it’s only the FTP service in IIS prior to IIS 7 and Windows 2008, here’s the full list of affected systems:

  • Microsoft Internet Information Services 5.0
  • Microsoft Internet Information Services 5.1
  • Microsoft Internet Information Services 6.0

Microsoft is investigating new public reports of a vulnerability in the FTP Service in Microsoft Internet Information Services (IIS) 5.0, Microsoft Internet Information Services (IIS) 5.1, and Microsoft Internet Information Services (IIS) 6.0. The vulnerability could allow remote code execution on affected systems that are running the FTP service and are connected to the Internet.

Read more in Microsoft Security Advisory (975191)