Microsoft IIS '../..' Denial of Service Vulnerability
BID:2218
Info
Microsoft IIS '../..' Denial of Service Vulnerability
| Bugtraq ID: | 2218 |
| Class: | Failure to Handle Exceptional Conditions |
| CVE: |
CVE-1999-0229 |
| Remote: | Yes |
| Local: | Yes |
| Published: | Feb 28 1999 12:00AM |
| Updated: | Jul 11 2009 04:46AM |
| Credit: | Posted at Common Vulnerabilities and Exposures <cve.mitre.org> CAN-1999-0229. |
| Vulnerable: |
Microsoft IIS 1.0 |
| Not Vulnerable: | |
Discussion
Microsoft IIS '../..' Denial of Service Vulnerability
It is possible to cause a denial of service in Windows IIS 1.0. By requesting a malformed request comprised of '../..' the server service will stop responding. A restart of the service is required in order to gain normal functionality.
It is possible to cause a denial of service in Windows IIS 1.0. By requesting a malformed request comprised of '../..' the server service will stop responding. A restart of the service is required in order to gain normal functionality.
Exploit / POC
Microsoft IIS '../..' Denial of Service Vulnerability
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Currently the SecurityFocus staff are not aware of any exploits for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution / Fix
Microsoft IIS '../..' Denial of Service Vulnerability
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].
Solution:
Currently the SecurityFocus staff are not aware of any vendor supplied patches for this issue. If you feel we are in error or are aware of more recent information, please mail us at: [email protected].