CVE-2000-0408

CVSS 2.0 Score 5 of 10 (medium)

Details

Published May 11, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0408 is a denial-of-service vulnerability affecting Microsoft IIS 4.05 and 5.0. Remote attackers can cause a server crash by crafting a URL with an excessively long and complex sequence of file extensions. This issue arises due to the servers' inability to properly handle such requests, leading to unintended termination of processes. The result is a denial of service to legitimate users until the server is restarted.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Microsoft IIS

Affected Vendors

Microsoft

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/LFRDBQ
https://www.cve.org/CVERecord?id=CVE-2000-0408
https://nvd.nist.gov/vuln/detail/CVE-2000-0408

Back to Vulnerability Database

Platform Features

Products

Use Cases

Teams

Industries

Services

Stimmen aus Moskau: Russian Influence Operations Target German Elections

2024 Malicious Infrastructure Report

2024 Annual Report

Know What Matters

For Customers

For Partners