CVE-2000-0408
— NVD-CWE-Other
- Published: 2000-05-11T04:00:00.000
- Last modified: 2025-04-03T01:03:51.193
- CWE: NVD-CWE-Other
CVE-2000-0408 — IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the "Malformed Extension Data in URL" vulnerability. [Weakness: NVD-CWE-Other]
Related CVE by CWE
No related CWE found.
Top CVE for Vendor
No vendor taxonomy on this entry.
Recently Exploited Similar Vulnerabilities
No recent KEV-listed items for this vendor/product.
IIS 4.05 and 5.0 allow remote attackers to cause a denial of service via a long, complex URL that appears to contain a large number of file extensions, aka the “Malformed Extension Data in URL” vulnerability.
🧠 Explainer: What this vulnerability means
Summary: A flaw in the product from the vendor (CWE: unspecified) can be exploited.
Impact: Potential impact includes remote code execution, data theft, or denial of service.
Mitigation: Until patched, restrict exposure, enforce least privilege, and monitor for suspicious activity.
No vendor/product data yet.
- http://www.microsoft.com/technet/support/kb.asp?ID=260205 []
- http://www.securityfocus.com/bid/1190 []
- http://www.ussrback.com/labs40.html []
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-030 []
- http://www.microsoft.com/technet/support/kb.asp?ID=260205 []
- http://www.securityfocus.com/bid/1190 []
- http://www.ussrback.com/labs40.html []
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-030 []
No explicit mitigation/advisory links found in references.