CVE-1999-0867

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Aug 11, 1999

Updated: Nov 20, 2024

CWE ID 20

Summary

CVE-1999-0867 refers to a denial-of-service vulnerability in Internet Information Services (IIS) version 4.0. Hackers can exploit this weakness by overwhelming the server with a flood of HTTP requests containing malformed headers. This can cause IIS to crash or become unresponsive, effectively denying service to legitimate users until the server is restarted. This vulnerability poses a significant threat to websites using IIS 4.0 and highlights the importance of keeping web servers updated with the latest security patches.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft IIS

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlUoQ
https://www.cve.org/CVERecord?id=CVE-1999-0867
https://nvd.nist.gov/vuln/detail/CVE-1999-0867

Back to Vulnerability Database