CVE-1999-0450

CVSS 2.0 Score 7.5 of 10 (high)

Details

Published Jan 26, 1999

Updated: Nov 20, 2024

Summary

CVE-1999-0450 is a vulnerability affecting Microsoft IIS (Internet Information Services) servers. An attacker can exploit this issue by requesting a non-existent URL, causing Perl (perl.exe) to reveal real file paths unintended for public access. This could lead to unauthorized access or information disclosure, making it an important security concern for IIS users.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft IIS

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlSfF
https://www.cve.org/CVERecord?id=CVE-1999-0450
https://nvd.nist.gov/vuln/detail/CVE-1999-0450

Back to Vulnerability Database