Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0349


Vulnerability Score 7.5 7.5
CVE Id CVE-1999-0349
Last Modified 03 Aug 2015 02:29:20
Published 27 Jan 1999 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE



A buffer overflow in the FTP list (ls) command in IIS allows remote attackers to conduct a denial of service and, in some cases, execute arbitrary commands.

Vulnerable Systems


  • Microsoft Internet Information Server 3.0

  • Microsoft Internet Information Server 4.0


EEYE - IIS Remote FTP Exploit/DoS Attack

MSKB - Q188348

MS - MS99-003

Last Updated: 27 May 2016 10:34:56