CVE-2000-0115

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Jan 21, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0115 is a vulnerability affecting Microsoft's Internet Information Services (IIS) software. This issue allows local users to induce a denial of service condition by inputting invalid regular expressions in a Visual Basic script located on an ASP page. By exploiting this weakness, an attacker can cause IIS to consume excessive system resources, leading to a crash or unavailability of the affected web server. This vulnerability can result in significant disruptions to web services if left unpatched.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft IIS

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/NWlYnR
https://www.cve.org/CVERecord?id=CVE-2000-0115
https://nvd.nist.gov/vuln/detail/CVE-2000-0115

Back to Vulnerability Database