Microsoft late Tuesday confirmed the publication of exploit code for a serious code execution vulnerability in the File Transfer Protocol (FTP) Service in Microsoft Internet Information Services (IIS) 5.0, 5.1, and 6.0.
A security advisory from Redmond warned that the vulnerability could allow remote code execution on affected systems running the FTP service and connected to the Internet. Read the advisory [microsoft.com] See workaround information on the SR&D blog [technet.com]
Ryan Naraine is a security writer social media enthusiast specializing in Internet and computer security issues. He also blogs at ZDNet and previously served as Editor-at-Large/Security at eWEEK and senior editor at Jupiter Media's internetnetnews.com. On this blog, Ryan provides in-depth coverage of hacker attacks, vulnerability research, flaw warnings and news analysis. Follow Ryan on Twitter.
Contact Ryan
ThreatPost was mentioned - "Twitter Mention - DMor2: miXSS... the new breed of Cross-Site attacks (via @Threatpost) http://bit.ly/9G3K1S #security #..." 2:06pm # ThreatPost was mentioned - "Twitter Mention - alvarado69: RT @threatpost: Former CISO of Pennsylvania Robert Maley explains why he was really fired ..." 2:00pm # ThreatPost was mentioned - "Twitter Mention - alvarado69: RT @threatpost: A new XSS attack that exploits commonly used network admin tools could be ..." 2:00pm # ThreatPost was mentioned - "Twitter Mention - alvarado69: RT @threatpost: Medicaid CIO said the level of security for most companies is embarrassing..." 1:59pm # ThreatPost was mentioned - "Twitter Mention - alvarado69: RT @threatpost:JoannaRutkowskaReleasedNewOpenSource OS to provide isolation of the OS's co..." 1:55pm #
