Vulnerabilities > CVE-2000-0858 - Unspecified vulnerability in Microsoft Internet Information Server and Windows NT

CVSS 5.0 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

NONE

Availability impact

PARTIAL

network

low complexity

microsoft

NVD

Published: 2000-11-14

Updated: 2017-10-10

Summary

Vulnerability in Microsoft Windows NT 4.0 allows remote attackers to cause a denial of service in IIS by sending it a series of malformed requests which cause INETINFO.EXE to fail, aka the "Invalid URL" vulnerability.

Vulnerable Configurations

Part	Description	Count
Application	Microsoft Microsoft Internet Information Server 4.0	1
OS	Microsoft Microsoft Windows NT 4.0	1

References

http://archives.neohapsis.com/archives/vendor/2000-q3/0065.html
http://www.securityfocus.com/archive/1/80413
http://www.securityfocus.com/bid/1642
https://exchange.xforce.ibmcloud.com/vulnerabilities/5202