Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote attackers to bypass authentication requirements, as demonstrated by connecting via Microsoft Visual InterDev 6.0.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2007-07-05T19:00:00Z
Updated: 2024-09-16T18:33:53.292Z
Reserved: 2007-07-05T00:00:00Z
Link: CVE-1999-1591
Vulnrichment
No data.
NVD
Status : Modified
Published: 1999-12-31T05:00:00.000
Modified: 2024-11-20T23:31:29.217
Link: CVE-1999-1591
Redhat
No data.