Description

Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimited .HTR Request" vulnerability.

Remediation

References

CVE-2000-0304

Related Vulnerabilities

WordPress Plugin All-in-One WP Migration Information Disclosure (7.0)

OpenSSL Observable Discrepancy Vulnerability (CVE-2022-4304)

PHP Other Vulnerability (CVE-2005-3319)

Play Framework Uncontrolled Recursion Vulnerability (CVE-2020-26882)

WordPress Plugin HM Multiple Roles Security Bypass (1.2)

Severity

Medium

Classification

CVE-2000-0304

Tags

Missing Update Known Vulnerabilities