CVE-1999-0154

Name of the Vulnerable Software and Affected Versions IIS versions 2.0 through 3.0

Description The issue allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL.

Recommendations For IIS versions 2.0 through 3.0, consider restricting access to ASP pages until a fix is available. As a temporary workaround, avoid using ASP pages in IIS versions 2.0 through 3.0 until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.