6 matches found
CVE-1999-0867
CVE-1999-0867 describes a denial of service affecting IIS 4.0 caused by a flood of HTTP requests with malformed headers. The available connected documents corroborate a remote DoS scenario, originating from malformed header handling in IIS 4.0. The core vulnerability is the server’s inability to ...
CVE-2000-0246
The vulnerability CVE-2000-0246 affects Microsoft IIS 4.0/5.0 where ISAPI extension processing fails for a virtual directory mapped to a UNC share, enabling remote attackers to read ASP source and other files. OpenVAS/Nessus entries confirm ASP/HTR source disclosure via UNC-path access. No remedi...
CVE-1999-0777
The connected Red Hat/NVD/CVE records confirm CVE-1999-0777 affects IIS FTP servers, where a remote attacker can read or delete files on the server despite having no access permissions. The vulnerability stems from a permission bypass in the FTP service, enabling partial confidentiality and integ...
CVE-2000-0053
CVE-2000-0053 affects the Microsoft Commercial Internet System (MCIS) IMAP server. A remote attacker can trigger a denial of service by sending a malformed IMAP request. The NVD entry records a CVSSv2 base score of 7.5 (HIGH) with network access, low attack complexity, no authentication, and part...
CVE-1999-0861
CVE-1999-0861 describes a race condition in the SSL ISAPI filter used by IIS and other servers, which may leak information in plaintext. The connected materials reiterate the high-level description but do not specify affected products/versions, root cause details beyond “race condition,” or concr...
CVE-1999-0910
CVE-1999-0910 affects Microsoft Site Server and Commercial Internet System (MCIS). The issue is that cookies are not given an expiration, allowing proxies to cache them and potentially be reused by a different user. This could lead to cross-user cookie exposure and session confusion. The availabl...