NT IIS FTP DoS / Buffer Overflow Vulnerability

NT IIS FTP DoS / Buffer Overflow Vulnerability

Connecting to the FTP server and issuing an ls command with 316 characters will cause the inetinfo.exe service to crash (and the connection to be reset). Passing more than 316 characters will cause the stack to be overwritten. Up to 505 characters may be passed.