Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) processes unspecified commands before TLS is enabled for a session, which allows remote malicious users to obtain sensitive information by reading the replies to these commands, aka "FTP Command Injection Vulnerability."
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft ftp_service 7.0 |
||
microsoft ftp_service 7.5 |