Description

Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimited .HTR Request" vulnerability.

Remediation

References

CVE-2000-0304

Related Vulnerabilities

MyBB Other Vulnerability (CVE-2010-4628)

WordPress Plugin Post SMTP-WP SMTP with Email Logs & Mobile App for Failure Alerts-Any SMTP Plus Gmail SMTP, Office 365, Brevo, Mailgun, Amazon SES, Postmark Server-Side Request Forgery (2.1.6)

WordPress Plugin wp-autosuggest SQL Injection (0.24)

WordPress Plugin PayPal Digital Goods powered by Cleeng Cross-Site Scripting (2.2.13)

MySQL CVE-2020-14591 Vulnerability (CVE-2020-14591)

Severity

Medium

Classification

CVE-2000-0304

Tags

Missing Update Known Vulnerabilities