Vulnerability Description
Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext.
CVSS Score
2.6
LOW
AV:N/AC:H/Au:N/C:P/I:N/A:N
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Commercial Internet System | 2.0 |
| Microsoft | Internet Information Server | 4.0 |
| Microsoft | Site Server | 3.0 |
| Microsoft | Site Server Commerce | 3.0 |
Related Weaknesses (CWE)
References
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ244613
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-05
- http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ244613
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-05
FAQ
What is CVE-1999-0861?
CVE-1999-0861 is a vulnerability with a CVSS score of 2.6 (LOW). Race condition in the SSL ISAPI filter in IIS and other servers may leak information in plaintext.
How severe is CVE-1999-0861?
CVE-1999-0861 has been rated LOW with a CVSS base score of 2.6/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-1999-0861?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Commercial Internet System, Microsoft Internet Information Server, Microsoft Site Server, Microsoft Site Server Commerce.