5
CVE-1999-0867
- EPSS 21.53%
- Veröffentlicht 11.08.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:13
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Microsoft ≫ Commercial Internet System Version2.0
Microsoft ≫ Commercial Internet System Version2.5
Microsoft ≫ Internet Information Server Version4.0
Microsoft ≫ Site Server Version3.0 Updateunknown Editioncommerce
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 21.53% | 0.973 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:N/I:N/A:P
|
CWE-20 Improper Input Validation
The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238349
http://www.ciac.org/ciac/bulletins/j-058.shtml
http://www.securityfocus.com/bid/579
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-029