CyberSec.Space Logo
Back to CVE Browser

CVE-1999-0233

CRITICAL
10.0
CVSS Severity Score
EPSS Score0.0870%
EPSS Percentile10.95th
PublishedFeb 25, 1996
Last ModifiedApr 16, 2026

Vulnerability Description

IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files.

Affected Platforms (CPE)

πŸ“¦
Microsoft

Internet Information Services

= 1.0

References & Advisories

πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ148188
πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ155056
πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ148188
πŸ”— http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ155056

Related Vulnerabilities

CVE-2006-634610.0

Unspecified vulnerability in SAP Internet Graphics Service (IGS) 6.40 Patchlevel 15 and earlier, and 7.00 Patchlevel 3 and earlier...

CVE-2007-249410.0

Multiple stack-based buffer overflows in the PowerPointOCX ActiveX control in PowerPointViewer.ocx 3.1.0.3 allow remote attackers ...

CVE-2003-022410.0

Buffer overflow in ssinc.dll for Microsoft Internet Information Services (IIS) 5.0 allows local users to execute arbitrary code vi...

CVE-2007-281510.0

The "hit-highlighting" functionality in webhits.dll in Microsoft Internet Information Services (IIS) Web Server 5.0 only uses Wind...