CVE-1999-0348

CVSS 2.0 Score 5.0 of 10 (medium)

Details

Published Jan 27, 1999
Updated: Nov 7, 2023
CWE ID 200

Summary

CVE-1999-0348 is a vulnerability affecting Microsoft IIS (Internet Information Services) with ASP (Active Server Pages) caching. If two virtual servers on a physical machine share the same directory, information meant to be confidential from one server could be inadvertently released by the other server through the caching mechanism. This issue could potentially lead to the disclosure of sensitive data. Organizations using IIS with ASP should ensure that virtual servers are properly segregated to prevent unintended data leakage.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share