CVE-1999-0278

Internet Information Server - Unauthenticated Arbitrary File Read via ::$DATA URL Suffix

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-1999-0278. PoCs published by Paul Ashton.

AI-analyzed exploit summary The exploit leverages a path traversal vulnerability in Microsoft IIS and other NT webservers by appending '::$DATA' to an ASP file request, causing the server to return the source code instead of executing it. This results in an information disclosure vulnerability.

Description

In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.

Exploits (1)

exploitdb WORKING POC VERIFIED

by Paul Ashton · textremotemultiple

https://www.exploit-db.com/exploits/19118

View Code ZIP pw:eip

The exploit leverages a path traversal vulnerability in Microsoft IIS and other NT webservers by appending '::$DATA' to an ASP file request, causing the server to return the source code instead of executing it. This results in an information disclosure vulnerability.

Classification

Working Poc 100%

Attack Type

Info Leak

Complexity

Trivial

Reliability

Reliable

Target: Microsoft IIS and other NT webservers

No auth needed

Prerequisites: Access to the target web server

MITRE ATT&CK

T1005 - Data from Local System

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-003

Third Party Advisory, VDB Entry vdb-entry signature x_refsource_oval

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A913

Scores

EPSS 0.6481

EPSS Percentile 99.1%

Details

Status published

Products (3)

microsoft/internet_information_server 3.0

microsoft/internet_information_server 4.0

microsoft/windows_nt 4.0

Published Jun 01, 1998

Tracked Since Feb 18, 2026