CyberSec.Space Logo
Back to CVE Browser

CVE-1999-1011

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.1900%
EPSS Percentile20.80th
PublishedJul 19, 1999
Last ModifiedApr 16, 2026

Vulnerability Description

The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Data Access Components

= 1.5
πŸ“¦
Microsoft

Data Access Components

= 2.0
πŸ“¦
Microsoft

Data Access Components

= 2.1
πŸ“¦
Microsoft

Index Server

= 2.0
πŸ“¦
Microsoft

Internet Information Server

= 3.0
πŸ“¦
Microsoft

Internet Information Server

= 4.0
πŸ“¦
Microsoft

Site Server

= 3.0

References & Advisories

πŸ”— http://www.ciac.org/ciac/bulletins/j-054.shtml
πŸ”— http://www.osvdb.org/272
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-004
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-025
πŸ”— https://www.securityfocus.com/bid/529
πŸ”— http://www.ciac.org/ciac/bulletins/j-054.shtml
πŸ”— http://www.osvdb.org/272
πŸ”— https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-004

Related Vulnerabilities

CVE-2017-1026910.0

Vulnerability in the Oracle Tuxedo component of Oracle Fusion Middleware (subcomponent: Core). Supported versions that are affecte...

CVE-2020-1184410.0

Incorrect Authorization vulnerability in Micro Focus Container Deployment Foundation component affects products: - Hybrid Cloud Ma...

CVE-2017-1040510.0

Vulnerability in the Oracle Hospitality Reporting and Analytics component of Oracle Hospitality Applications (subcomponent: Report...

CVE-2021-2746010.0

Rockwell Automation FactoryTalk AssetCentre v10.00 and earlier components contain .NET remoting endpoints that deserialize untrust...