Security Portal

Intrusion Prevention Service

Signature Version: 4.966


DOS IIS4 Exair DOS -3 (CVE-1999-0449)
Threat Level: Critical
Release Date: 2011/3/21
Category: Dos/DDoS
Signature ID: 1054349
Included In:
Affected OS: Windows
Description: The ExAir sample site in IIS 4 allows remote attackers to cause a denial of service (CPU consumption) via a direct request to the (1) advsearch.asp, (2) query.asp, or (3) search.asp scripts.
Impact: Remote code execution
Recommendation: Update vendor's patch.
False Positive: None
False Negative: None
Additional Information (Links open in new window):
Reference(s): CVE-1999-0449, BID:193

Search the Threat Database
Enter Rule ID or Name