There is currently Microsoft I.I.S. ftp Servers. It is currently being tracked by B.I.D. 36189: Microsoft I.I.S. F.T.P.d. N.L.S.T. Remote Buffer Overflow Vulnerability.
The flaw affects I.I.S. 5 and 6, but Remote Code Execution has been demonstrated only against I.I.S. 5. To Exploit this issue, an Attacker requires Anonymous Access - or legitimate Credentials - and permission to write to a directory. Despite these conditions, we believe that many systems will be Vulnerable across the Internet and that In-The-Wild Attacks will occur.
On Monday, August 31, 2009, a Revised Exploit for this Flaw was made Available. The Exploit can spawn a shell on the Targeted System and works reliably against Windows 2000 systems running I.I.S. 5.
At the time of writing, no Patches for this Flaw are Available. Administrators Running Microsoft I.I.S. ftp Servers are advised to Disable Write Access to Anonymous Users and, if possible, Disable Anonymous Access entirely.