File Creation Vulnerability in Microsoft Internet Information Services with Third-Party Upload Applications
CVE-2009-4445

Currently unrated

Key Information:

Vendor: Microsoft
Status: Internet Information Services
Vendor: CVE Published:; 29 December 2009

What is CVE-2009-4445?

Microsoft Internet Information Services (IIS) can be exploited by remote attackers interacting with certain third-party upload applications. This can allow for the creation of empty files with arbitrary extensions by manipulating the filename. Specifically, attackers can use a filename format that includes an initial extension followed by a colon and a safe extension (e.g., '.asp:.jpg'), leading to the generation of an empty file with an unintended extension. This issue is associated with how IIS interacts with NTFS Alternate Data Streams filename syntax, raising concerns about the responsibility of the third-party applications in enforcing proper extension restrictions.

References

http://securitytracker.com/id?1023387

vdb-entryx_refsource_SECTRACK

http://soroush.secproject.com/downloadable/iis-semicolon-...

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/55308

vdb-entryx_refsource_XF

EPSS Score

10% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Dec 29, 2009
Vulnerability Reserved
Dec 29, 2009