CVE-2008-4300

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Information Services (IIS) (affected versions not specified)

Description: A certain ActiveX control in adsiis.dll allows remote attackers to cause a denial of service (browser crash) via a long string in the second argument to the GetObject method. This issue was disclosed by an unreliable researcher, so it might be incorrect.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.