CVE-2010-1256

CVE-2010-1256 · HIGH Severity

AV:N/AC:M/AU:S/C:C/I:C/A:C

Unspecified vulnerability in Microsoft IIS 6.0, 7.0, and 7.5, when Extended Protection for Authentication is enabled, allows remote authenticated users to execute arbitrary code via unknown vectors related to "token checking" that trigger memory corruption, aka "IIS Authentication Memory Corruption Vulnerability."

Learn more about our Cis Benchmark Audit For Microsoft Iis.