CVE-1999-0737
published 1999-05-07CVE-1999-0737: The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
PriorityP427medium5CVSS 2.0
AVNACLAuNCPINAN
EPSS
28.08%
97.9th percentile
The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | internet_information_server | — | — |
Detection & IOCsextracted from sources · hover to see the quote
path/viewcode
snort
alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"GPL WEB_SERVER viewcode access"; flow:established,to_server; http.uri; content:"/viewcode"; reference:cve,1999-0737; reference:nessus,10576; reference:nessus,12048; classtype:web-application-attack; sid:2101403; rev:13; metadata:created_at 2010_09_23, cve CVE_1999_0737, signature_severity Unknown, updated_at 2024_03_08;)
- →Detect inbound HTTP requests to IIS/Site Server containing '/viewcode' in the URI, indicating attempted access to the vulnerable viewcode.asp sample file.
- →The attack targets the viewcode.asp sample file shipped with IIS and Site Server; presence of this file on a server indicates exposure. ↗
- ·The Snort/Suricata rule uses 'http.uri' sticky buffer with content match on '/viewcode'; ensure the HTTP inspection engine is enabled and normalizing URIs to avoid evasion via encoding.
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
VulDB
Microsoft IIS 4.0 viewcode.asp privileges management (MS99-013 / Nessus ID 10576)
vuldb·2026-04-19·CVSS 5.0
CVE-1999-0737 [MEDIUM] Microsoft IIS 4.0 viewcode.asp privileges management (MS99-013 / Nessus ID 10576)
A vulnerability was found in Microsoft IIS 4.0. It has been rated as critical. The impacted element is an unknown function of the file viewcode.asp. Performing a manipulation results in improper privilege management.
This vulnerability is reported as CVE-1999-0737. The attack is possible to be carried out remotely. Moreover, an exploit is present.
Applying a patch is the recommended action to fix this issue.
GHSA
GHSA-mrf7-29w2-32h3: The viewcode
ghsa_unreviewed·2022-04-30
CVE-1999-0737 [MEDIUM] GHSA-mrf7-29w2-32h3: The viewcode
The viewcode.asp sample file in IIS and Site Server allows remote attackers to read arbitrary files.
Suricata
GPL WEB_SERVER viewcode access
suricata·2010-09-23
CVE-1999-0737 GPL WEB_SERVER viewcode access
GPL WEB_SERVER viewcode access
Rule: alert http $EXTERNAL_NET any -> $HTTP_SERVERS any (msg:"GPL WEB_SERVER viewcode access"; flow:established,to_server; http.uri; content:"/viewcode"; reference:cve,1999-0737; reference:nessus,10576; reference:nessus,12048; classtype:web-application-attack; sid:2101403; rev:13; metadata:created_at 2010_09_23, cve CVE_1999_0737, signature_severity Unknown, updated_at 2024_03_08;)
No public exploits indexed.
No writeups or analysis indexed.
1999-05-07
Published