CVE-2009-2521

This exploit triggers a stack exhaustion denial-of-service (DoS) in Microsoft IIS FTP Server versions 5.0 through 7.0 by sending a crafted LIST command with a wildcard. It requires valid FTP credentials and checks for the presence of a directory, creating one if necessary.

This Metasploit module exploits a stack exhaustion vulnerability in Microsoft IIS FTP Server (5.0-7.0) via a crafted LIST command with wildcards, leading to a Denial of Service (DoS). It requires valid FTP credentials and checks for directory existence, creating one if necessary.

This exploit demonstrates a Denial of Service (DoS) vulnerability in Microsoft IIS FTPD versions 5.0 and 6.0. The vulnerability is triggered by sending a malformed 'ls' command with a recursive globbing pattern, causing a stack overflow and crashing the FTP service.