CVE-2009-4444

Name of the Vulnerable Software and Affected Versions Microsoft Internet Information Services (IIS) versions 5.x through 6.x

Description The issue allows remote attackers to bypass intended extension restrictions of third-party upload applications. This is achieved by using a filename with a first extension such as .asp, .cer, or .asa, followed by a semicolon and a safe extension. For example, using asp.dll to handle a .asp;.jpg file.

Recommendations For Microsoft Internet Information Services (IIS) versions 5.x through 6.x, consider configuring the server to handle file extensions more securely, such as by ignoring any characters after a semicolon in filenames. As a temporary workaround, restrict the use of sensitive extensions like .asp, .cer, or .asa in upload applications until a more robust solution is implemented.