Description

In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension.

Remediation

References

CVE-1999-0412

Related Vulnerabilities

WordPress 4.0.x Multiple Vulnerabilities (4.0 - 4.0.30)

WordPress Plugin MDC YouTube Downloader Local File Inclusion (2.1.0)

WordPress Plugin Contact Form Email Cross-Site Scripting (1.1.87)

WordPress Plugin Easy Forms for MailChimp Unspecified Vulnerability (6.0.3.2)

WordPress Plugin WP Maintenance Mode & Site Under Construction Cross-Site Request Forgery (1.8.2)

Severity

High

Classification

CVE-1999-0412

Tags

Missing Update Known Vulnerabilities