What is CVE-2010-3972?

CVE-2010-3972 is a vulnerability in Microsoft Internet_information_services, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-12-23.

Is CVE-2010-3972 known to be exploited?

5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Buffer overflow in Microsoft Internet_information_services

CVE-2010-3972

Heap-based buffer overflow in the TELNET_STREAM_CONTEXT::OnSendData function in ftpsvc.dll in Microsoft FTP Service 7.0 and 7.5 for Internet Information Services (IIS) 7.0, and IIS 7.5, allows remote attackers to execute arbitrary code or…

Vulnerability class: Buffer Overflow

EPSS: 0.917 (99.7th percentile) — read the EPSS interpretation.

Affected products

Microsoft Internet_information_services — versions 7.5
N/a — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

Public proof-of-concept exploits

References

45542 (Exploit, vdb-entry, x_refsource_BID)
MS11-004 (x_refsource_MS, vendor-advisory)
ms-iis-onsenddata-bo(64248) (vdb-entry, x_refsource_XF)
secure@microsoft.com (x_refsource_MISC)
VU#842372 (x_refsource_CERT-VN, US Government Resource, third-party-advisory)
1024921 (vdb-entry, x_refsource_SECTRACK)
oval:org.mitre.oval:def:12370 (x_refsource_OVAL, signature, vdb-entry)
ADV-2010-3305 (vdb-entry, x_refsource_VUPEN, Vendor Advisory)
15803 (Exploit, exploit, x_refsource_EXPLOIT-DB)
42713 (x_refsource_SECUNIA, third-party-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2010-3972?: CVE-2010-3972 is a vulnerability in Microsoft Internet_information_services, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. Published 2010-12-23.
Is CVE-2010-3972 known to be exploited?: 5 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.