Vulnerability in Microsoft Internet_information_server
CVE-1999-1591
Microsoft Internet Information Services (IIS) server 4.0 SP4, without certain hotfixes released for SP4, does not require authentication credentials under certain conditions, which allows remote attackers to bypass authentication requireme…
EPSS: 0.113 (95.4th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Internet_information_server — versions 4.0
- Microsoft Visual_interdev — versions 6.0
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, x_refsource_NTBUGTRAQ)
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (mailing-list, x_refsource_NTBUGTRAQ)