CVE-2000-0258
— CWE-20
- CVSS Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
- Published: 2000-04-12T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- CWE: CWE-20
CVE-2000-0258 — IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the "Myriad Escaped Characters" Vulnerability. [Severity (CVSS) 7.5 · Weakness: CWE-20]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No vendor taxonomy on this entry.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
IIS 4.0 and 5.0 allows remote attackers to cause a denial of service by sending many URLs with a large number of escaped characters, aka the “Myriad Escaped Characters” Vulnerability.
🧠 Explainer: What this vulnerability means
Summary: the product from the vendor is impacted (CWE: unspecified).
Impact: Systems could be compromised, leading to confidentiality, integrity, or availability loss.
Mitigation: Prioritize patching and consider temporary workarounds documented by the vendor.
No vendor/product data yet.
- http://www.securityfocus.com/bid/1101 [Third Party Advisory, VDB Entry]
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-023 []
- http://www.securityfocus.com/bid/1101 [Third Party Advisory, VDB Entry]
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-023 []
No explicit mitigation/advisory links found in references.