CVE-1999-0867

EPSS 17.01%
Published 11.08.1999 04:00:00
Last modified 03.04.2025 01:03:51
Source cve@mitre.org
Teams watchlist Login
Open Login

Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.

Affected products Warnungen 0 Metrics 2 CWE 1 References 7

Data is provided by the National Vulnerability Database (NVD)

Microsoft ≫ Commercial Internet System Version2.0

Microsoft ≫ Commercial Internet System Version2.5

Microsoft ≫ Internet Information Server Version4.0

Microsoft ≫ Site Server Version3.0 Updateunknown Editioncommerce

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	17.01%	0.947

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5	10	2.9	AV:N/AC:L/Au:N/C:N/I:N/A:P

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ238349

http://www.ciac.org/ciac/bulletins/j-058.shtml

http://www.securityfocus.com/bid/579

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-029

https://nvd.nist.gov/vuln/detail/CVE-1999-0867

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-1999-0867

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-1999-0867

EUVD