Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-1999-0725


Vulnerability Score 7.1 7.1
CVE Id CVE-1999-0725
Last Modified 09 Sep 2008 12:00:00
Published 19 Aug 1999 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE



When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. "Double Byte Code Page".

Vulnerable Systems


  • Microsoft Internet Information Server 3.0

  • Microsoft Internet Information Server 4.0


XF - iis-double-byte-code-page(2302)

BID - 477

MS - MS99-022

MSKB - Q233335

Last Updated: 27 May 2016 10:35:06