Lucene search
HistoryAug 19, 1999 - 4:00 a.m.
CVE-1999-0725
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
AI Score
6.9
Confidence
High
EPSS
0.005
Percentile
76.5%
When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. “Double Byte Code Page”.
Affected configurations
Node
microsoftinternet_information_serverMatch3.0ja
ORmicrosoftinternet_information_serverMatch3.0ko
ORmicrosoftinternet_information_serverMatch3.0zh
ORmicrosoftinternet_information_serverMatch4.0ja
ORmicrosoftinternet_information_serverMatch4.0ko
ORmicrosoftinternet_information_serverMatch4.0zh
| Vendor | Product | Version | CPE |
|---|---|---|---|
| microsoft | internet_information_server | 3.0 | cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:ja:*:*:*:* |
| microsoft | internet_information_server | 3.0 | cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:ko:*:*:*:* |
| microsoft | internet_information_server | 3.0 | cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:zh:*:*:*:* |
| microsoft | internet_information_server | 4.0 | cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:ja:*:*:*:* |
| microsoft | internet_information_server | 4.0 | cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:ko:*:*:*:* |
| microsoft | internet_information_server | 4.0 | cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:zh:*:*:*:* |
Related
cvelist
cvelist
CVE-1999-0725
2000-01-04 05:00:00
exploitdb
exploitdb
Microsoft IIS 3.0/4.0 - Double Byte Code Page
1999-06-24 00:00:00
cve
cve
CVE-1999-0725
2000-01-04 05:00:00
CVSS2
7.1
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
NONE
Availability Impact
NONE
AV:N/AC:M/Au:N/C:C/I:N/A:N
AI Score
6.9
Confidence
High
EPSS
0.005
Percentile
76.5%
Related for NVD:CVE-1999-0725