CVE-1999-0449

The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (2) query.asp, or (3) search.asp scripts.

Published: Jan 26, 1999
Updated: Apr 13, 2023
CVE: CVE-1999-0449
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.8
AV:N/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
microsoft / internet_information_server	4.0	4.0.x

http://www.osvdb.org/2
http://www.osvdb.org/3
http://www.osvdb.org/4
http://www.securityfocus.com/bid/193

Vulnerability Database

289,697

CVE-1999-0449