- EPSS 79.98%
- Veröffentlicht 30.03.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:51:18
IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
CVE-2000-0053
- EPSS 14.7%
- Veröffentlicht 04.01.2000 05:00:00
- Zuletzt bearbeitet 16.06.2026 21:50:54
Microsoft Commercial Internet System (MCIS) IMAP server allows remote attackers to cause a denial of service via a malformed IMAP request.
CVE-1999-0777
- EPSS 11.99%
- Veröffentlicht 23.09.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:02
IIS FTP servers may allow a remote attacker to read or delete files on the server, even if they have "No Access" permissions.
- EPSS 5.78%
- Veröffentlicht 10.09.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:18
Microsoft Site Server and Commercial Internet System (MCIS) do not set an expiration for a cookie, which could then be cached by a proxy and inadvertently used by a different user.
CVE-1999-0861
- EPSS 3.24%
- Veröffentlicht 11.08.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:12
Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext.
- EPSS 21.53%
- Veröffentlicht 11.08.1999 04:00:00
- Zuletzt bearbeitet 16.06.2026 21:49:13
Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.