Description IIS 1.0 allows users to execute arbitrary commands using .bat or .cmd files. Remediation References CVE-1999-0233 Related Vulnerabilities Drupal Core 5.x Cross-Site Request Forgery (5.0 - 5.2) WordPress Plugin Strong Testimonials Cross-Site Scripting (2.40.0) Jboss EAP Improper Restriction of Operations within the Bounds of a Memory Buffer Vulnerability (CVE-2015-5220) Squid Other Vulnerability (CVE-2011-3205) TYPO3 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') Vulnerability (CVE-2015-8757) Severity Critical Classification CVE-1999-0233 Tags Missing Update Known Vulnerabilities