Vulnerabilities > Microsoft > Internet Information Services
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 1999-02-19 | CVE-1999-0412 | Unspecified vulnerability in Microsoft products In IIS and other web servers, an attacker can attack commands as SYSTEM if the server is running as SYSTEM and loading an ISAPI extension. | 7.5 |
| 1999-01-26 | CVE-1999-0450 | Unspecified vulnerability in Microsoft products In IIS, an attacker could determine a real path using a request for a non-existent URL that would be interpreted by Perl (perl.exe). | 7.5 |
| 1997-06-01 | CVE-1999-0281 | Unspecified vulnerability in Microsoft products Denial of service in IIS using long URLs. | 5.0 |
| 1997-01-01 | CVE-1999-0253 | Unspecified vulnerability in Microsoft products IIS 3.0 with the iis-fix hotfix installed allows remote intruders to read source code for ASP programs by using a %2e instead of a . | 7.5 |