Filtered by vendor Microsoft Subscriptions
Filtered by product Internet Information Server Subscriptions
Total 112 CVE
CVE Vendors Products Updated CVSS v3.1
CVE-1999-0412 1 Microsoft 2 Internet Information Server, Internet Information Services 2024-11-21 N/A
In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.
CVE-1999-0407 1 Microsoft 1 Internet Information Server 2024-11-21 N/A
By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.
CVE-1999-0349 1 Microsoft 1 Internet Information Server 2024-11-21 N/A
A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.
CVE-1999-0348 1 Microsoft 1 Internet Information Server 2024-11-21 N/A
IIS ASP caching problem releases sensitive information when two virtual servers share the same physical directory.
CVE-1999-0281 1 Microsoft 2 Internet Information Server, Internet Information Services 2024-11-21 N/A
Denial of service in IIS using long URLs.
CVE-1999-0278 1 Microsoft 2 Internet Information Server, Windows Nt 2024-11-21 N/A
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
CVE-1999-0253 1 Microsoft 2 Internet Information Server, Internet Information Services 2024-11-21 N/A
IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . (dot) in the URL.
CVE-1999-0229 1 Microsoft 1 Internet Information Server 2024-11-21 N/A
Denial of service in Windows NT IIS server using ..\..
CVE-1999-0191 1 Microsoft 1 Internet Information Server 2024-11-21 N/A
IIS newdsn.exe CGI script allows remote users to overwrite files.
CVE-1999-0154 1 Microsoft 2 Internet Information Server, Internet Information Services 2024-11-21 N/A
IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL.
CVE-1999-0012 2 Microsoft, Netscape 5 Frontpage, Internet Information Server, Personal Web Server and 2 more 2024-11-21 N/A
Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.
CVE-1999-0007 5 C2net, Hp, Microsoft and 2 more 13 Stonghold Web Server, Open Market Secure Webserver, Exchange Server and 10 more 2024-11-21 N/A
Information from SSL-encrypted sessions via PKCS #1.