CVE-1999-1035

Summary

CVE-1999-1035 is a denial-of-service vulnerability affecting Internet Information Services (IIS) versions 3.0 and 4.0 on x86 and Alpha architectures. A malformed GET request can be used by remote attackers to cause IIS to hang, leading to a denial of service condition. This issue, also known as the "IIS GET" vulnerability, poses a significant risk to systems running the affected versions of IIS. Attackers can exploit this weakness by sending specially crafted requests, resulting in crashed or unresponsive IIS servers. System administrators should apply the available patches to mitigate this vulnerability and protect their networks.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.