CVE-1999-0348
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Published Jan 27, 1999
Updated: Nov 7, 2023
CWE ID 200
Summary
CVE-1999-0348 is a vulnerability affecting Microsoft IIS (Internet Information Services) with ASP (Active Server Pages) caching. If two virtual servers on a physical machine share the same directory, information meant to be confidential from one server could be inadvertently released by the other server through the caching mechanism. This issue could potentially lead to the disclosure of sensitive data. Organizations using IIS with ASP should ensure that virtual servers are properly segregated to prevent unintended data leakage.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microsoft IIS
Affected Vendors
- Microsoft