Description

The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (2) query.asp, or (3) search.asp scripts.

Remediation

References

CVE-1999-0449

Related Vulnerabilities

WordPress Plugin Simple File List Multiple Vulnerabilities (3.2.4)

Joomla! Core 1.6.x Cross-Site Scripting (1.6.0 - 1.6.6)

WordPress Plugin BuddyPress Cover Arbitrary File Upload (2.1.4.2)

PrestaShop Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2020-15081)

WordPress Plugin jQuery Tagline Rotator Cross-Site Scripting (0.1.5)

Severity

High

Classification

CVE-1999-0449

Tags

Missing Update Known Vulnerabilities