CVE-1999-0867

EPSS 17.01%
Veröffentlicht 11.08.1999 04:00:00
Zuletzt bearbeitet 03.04.2025 01:03:51
Quelle cve@mitre.org
Teams Watchlist Login
Unerledigt Login

Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 1 Referenzen 7

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Microsoft ≫ Commercial Internet System Version2.0

Microsoft ≫ Commercial Internet System Version2.5

Microsoft ≫ Internet Information Server Version4.0

Microsoft ≫ Site Server Version3.0 Updateunknown Editioncommerce

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	17.01%	0.947

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238349

http://www.ciac.org/ciac/bulletins/j-058.shtml

http://www.securityfocus.com/bid/579

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-029

https://nvd.nist.gov/vuln/detail/CVE-1999-0867

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-0867

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-0867

EUVD