CVE-2009-4444
 
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
Microsoft Internet Information Services (IIS) 5.x and 6.x uses only the portion of a filename before a ; (semicolon) character to determine the file extension, which allows remote attackers to bypass intended extension restrictions of third-party upload applications via a filename with a (1) .asp, (2) .cer, or (3) .asa first extension, followed by a semicolon and a safe extension, as demonstrated by the use of asp.dll to handle a .asp;.jpg file.
Microsoft Internet Information Services (IIS) 5.x y 6.x usa sólo la porción de un nombre de fichero antes de un caracter ; (punto y coma) para determinar la extensión del fichero, lo que permite a atacantes remotos eludir las restricciones de extensión previstas para aplicaciones de subida de ficheros de terceros mediante un nombre de fichero con una primera extensión (1) .asp, (2) .cer o (3) .asa seguida de un punto y coma y una extensión segura, tal y como se ha quedado demostrado al usar asp.dll para manejar un fichero .asp;.jpg.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2009-12-29 CVE Reserved
- 2009-12-29 CVE Published
- 2024-09-16 CVE Updated
- 2024-09-17 EPSS Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
CAPEC
References (6)
URL | Tag | Source |
---|---|---|
http://blogs.technet.com/msrc/archive/2009/12/27/new-reports-of-a-vulnerability-in-iis.aspx | Broken Link | |
http://secunia.com/advisories/37831 | Third Party Advisory | |
http://securitytracker.com/id?1023387 | Third Party Advisory | |
http://soroush.secproject.com/downloadable/iis-semicolon-report.pdf | Third Party Advisory | |
http://www.securityfocus.com/bid/37460 | Third Party Advisory | |
http://www.vupen.com/english/advisories/2009/3634 | Third Party Advisory |
URL | Date | SRC |
---|
URL | Date | SRC |
---|
URL | Date | SRC |
---|
Affected Vendors, Products, and Versions
Vendor | Product | Version | Other | Status | ||||||
---|---|---|---|---|---|---|---|---|---|---|
Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
Microsoft Search vendor "Microsoft" | Internet Information Services Search vendor "Microsoft" for product "Internet Information Services" | 5.0 Search vendor "Microsoft" for product "Internet Information Services" and version "5.0" | - |
Affected
| ||||||
Microsoft Search vendor "Microsoft" | Internet Information Services Search vendor "Microsoft" for product "Internet Information Services" | 6.0 Search vendor "Microsoft" for product "Internet Information Services" and version "6.0" | - |
Affected
|