PT-1996-1034 · Microsoft · Iis
Published
1996-02-25
·
Updated
2020-11-23
·
CVE-1999-0233
CVSS v2.0
10
High
| Vector | AV:N/AC:L/Au:N/C:C/I:C/A:C |
Name of the Vulnerable Software and Affected Versions
IIS version 1.0
Description
The issue allows users to execute arbitrary commands using .bat or .cmd files.
Recommendations
For IIS version 1.0, consider restricting the execution of .bat and .cmd files to prevent arbitrary command execution until a patch is available.
Exploit
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Related Identifiers
Affected Products
Iis