CVE-1999-0867

CVE Database · CVE-1999-0867

· N/AModified

CVSS v3.1

N/A

EPSS

22.08%

Published

Aug 11, 1999

Modified

Apr 15, 2026

Public PoC / Exploit (2)

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Denial of service in IIS 4.0 via a flood of HTTP requests with malformed headers.

Weaknesses (CWE)

CWE-20

Affected Products (4)

microsoft · commercial_internet_systemvulnerable

microsoft · internet_information_servervulnerable

microsoft · site_servervulnerable

References (8)