Lucene search

MitreCVE-1999-1223

HistoryMar 09, 2002 - 5:00 a.m.

CVE-1999-1223

2002-03-0905:00:00

mitre

web.nvd.nist.gov

cve-1999-1223

iis 3.0

remote attack

asp page

url

denial of service

nvd

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.9

Confidence

High

EPSS

0.022

Percentile

89.7%

JSON

IIS 3.0 allows remote attackers to cause a denial of service via a request to an ASP page in which the URL contains a large number of / (forward slash) characters.

Affected configurations

Nvd

Node

microsoftinternet_information_serverMatch3.0

VendorProductVersionCPE
microsoftinternet_information_server3.0cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
microsoft	internet_information_server	3.0	cpe:2.3:a:microsoft:internet_information_server:3.0:::::::*

References

support.microsoft.com/support/kb/articles/q187/5/03.asp

exchange.xforce.ibmcloud.com/vulnerabilities/3892

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

AI Score

6.9

Confidence

High

EPSS

0.022

Percentile

89.7%

JSON

Related for CVE-1999-1223