Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0154


Vulnerability Score 5.0 5.0
CVE Id CVE-1999-0154
Last Modified 09 Sep 2008 08:33:52
Published 31 Dec 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



IIS 2.0 and 3.0 allows remote attackers to read the source code for ASP pages by appending a . (dot) to the end of the URL.

Vulnerable Systems


  • Microsoft Internet Information Server 2.0

  • Microsoft Internet Information Server 3.0

Last Updated: 27 May 2016 10:34:50