CVE-1999-0349

Internet Information Server - Buffer Overflow via FTP List Command

Title source: llm
STIX 2.1

Description

A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.

References (3)

Core 3
Core References
Vendor Advisory vendor-advisory x_refsource_mskb
http://support.microsoft.com/default.aspx?scid=kb%3B%5BLN%5D%3BQ188348

Scores

EPSS 0.1792
EPSS Percentile 96.8%

Details

CWE
CWE-119
Status published
Products (2)
microsoft/internet_information_server 3.0
microsoft/internet_information_server 4.0
Published Jan 27, 1999
Tracked Since Feb 18, 2026