Security Advisory

CVE-1999-1537

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2004-09-01 04:00:00

Last updated 2024-08-01 17:18:07

Assigner mitre

State PUBLISHED

Description

IIS 3.x and 4.x does not distinguish between pages requiring encryption and those that do not, which allows remote attackers to cause a denial of service (resource exhaustion) via SSL requests to the HTTPS port for normally unencrypted files, which will cause IIS to perform extra work to send the files over SSL.

← Browse all CVEs View on cve.org ↗