CVE-1999-0012

Published: Feb 6, 1998Modified: Apr 16, 2026

7.0

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:H/A:L

Exploitability: 2.2 / Impact: 4.7

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

Affected (6)

Products: Microsoft: Frontpage, Internet Information Server, Personal Web Server · Netscape: Enterprise Server, Fasttrack Server

3 products

Internet Information Server

Personal Web Server

2 products

Enterprise Server

Fasttrack Server

Configuration A

6 vulnerable

Vulnerable Software	Affected Versions
Microsoft Frontpage	All versions
Microsoft Internet Information Server	Version 4.0
Microsoft Personal Web Server	Version 4.0
Netscape Enterprise Server	Version 3.0
Netscape Fasttrack Server	Version 2.01
Netscape Fasttrack Server	Version 3.01

Related CWEs

Authentication Bypass by Spoofing

This attack-focused weakness is caused by incorrectly implemented authentication schemes that are subject to spoofing attacks.

References (2)

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0012

Source: cve@mitre.org

https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-1999-0012

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.