CVE-2000-0304
— NVD-CWE-Other
- Published: 2000-05-10T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- CWE: NVD-CWE-Other
CVE-2000-0304 — Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the "Undelimited .HTR Request" vulnerability. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No vendor taxonomy on this entry.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
Microsoft IIS 4.0 and 5.0 with the IISADMPWD virtual directory installed allows a remote attacker to cause a denial of service via a malformed request to the inetinfo.exe program, aka the “Undelimited .HTR Request” vulnerability.
🧠 Explainer: What this vulnerability means
Summary: A flaw in the product from the vendor (CWE: unspecified) can be exploited.
Impact: It may allow privilege escalation, data exposure, or service interruption.
Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.
No vendor/product data yet.
- http://www.securityfocus.com/bid/1191 []
- http://xforce.iss.net/alerts/advise52.php3 []
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-031 []
- http://www.securityfocus.com/bid/1191 []
- http://xforce.iss.net/alerts/advise52.php3 []
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-031 []
No explicit mitigation/advisory links found in references.