CVE-1999-0012

CWE-2903 documents3 sources

Severity

7.0HIGH

EPSS

0.7%

top 27.49%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Microsoft Internet Information Server Microsoft Personal WEB Server Netscape Enterprise Server +1 more

Timeline

PublishedFeb 6

Latest updateApr 30

Description

Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:LExploitability: 2.2 | Impact: 4.7

Affected Packages4 packages

▶NVDmicrosoft/personal_web_server4.0

▶NVDmicrosoft/internet_information_server4.0

▶NVDnetscape/fasttrack_server2.01, 3.01+1

▶NVDnetscape/enterprise_server3.0

🔴Vulnerability Details

GHSA

GHSA-rvjj-5hjr-3fjf: Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names↗2022-04-30

▶

CVEList

CVE-1999-0012: Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names↗1999-09-29

▶