PT-2010-4249 · Microsoft · Internet Information Services
Travis Raybold
·
Published
2010-09-15
·
Updated
2025-09-22
·
CVE-2010-2730
CVSS v2.0
9.3
High
| Vector | AV:N/AC:M/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
Microsoft Internet Information Services (IIS) version 7.5
Description
A buffer overflow issue exists in Microsoft Internet Information Services (IIS) 7.5 when FastCGI is enabled. This allows remote attackers to execute arbitrary code via crafted headers in a request.
Recommendations
For Microsoft Internet Information Services (IIS) version 7.5, consider disabling FastCGI until a patch is available to prevent exploitation of the buffer overflow issue.
Fix
RCE
Buffer Overflow
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Internet Information Services