Description

When IIS is run with a default language of Chinese, Korean, or Japanese, it allows a remote attacker to view the source code of certain files, a.k.a. "Double Byte Code Page".

Remediation

References

CVE-1999-0725

Related Vulnerabilities

OpenSSL Uncontrolled Recursion Vulnerability (CVE-2018-0739)

PHP Other Vulnerability (CVE-2015-8866)

MySQL CVE-2022-21321 Vulnerability (CVE-2022-21321)

WordPress Plugin Fudousan Cross-Site Scripting (5.7.0)

Moodle Insertion of Sensitive Information into Log File Vulnerability (CVE-2012-1156)

Severity

High

Classification

CVE-1999-0725

Tags

Missing Update Known Vulnerabilities