CVE-2008-1446

Name of the Vulnerable Software and Affected Versions Microsoft Internet Information Services (IIS) versions 5.0 through 7.0

Description The issue is related to an integer overflow in the Internet Printing Protocol (IPP) ISAPI extension, which allows remote authenticated users to execute arbitrary code via an HTTP POST request. This request triggers an outbound IPP connection from a web server to a machine operated by the attacker.

Recommendations For Microsoft Internet Information Services (IIS) versions 5.0 through 7.0, consider disabling the IPP ISAPI extension as a temporary workaround until a patch is available. Restrict access to the vulnerable extension to minimize the risk of exploitation. Avoid using the HTTP POST request to trigger an outbound IPP connection until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.