Microsoft IIS 0-day

Share this article:
Proof-of-concept code for a new Microsoft zero-day stack overflow vulnerability was posted Monday on exploit repository Milw0rm. The exploit is present in the file transfer protocol (FTP) module in Microsoft Internet Information Server (IIS) 5.0 and 6.0, the SANS Internet Storm Center said in a blog post Monday. A Microsoft spokeswoman told SCMagazineUS.com that the company is investigating the vulnerability but is not aware of any in-the-wild exploits.

Share this article:

Sign up to our newsletters

More in News

Facebook scam leads victims to Nuclear exploit kit

Researchers at Symantec say attackers are becoming more aggressive and using Facebook scams to exploit users' computers.

eBay faces class-action suit over breach

eBay faces class-action suit over breach

A suit filed in a federal court in Louisiana charges the company with failing to protect personal information and seeks damages on multiple counts.

Five schools earn NSA's excellence in cyber ops distinction

The schools earned NSA's Centers for Academic Excellence designation for their cyber offerings.