CVE-1999-0407 | Vulnerability Database | Aqua Security

NVD

https://nvd.nist.gov/vuln/detail/CVE-1999-0407

CWE

https://cwe.mitre.org/data/definitions/NVD-Other.html

By default, IIS 4.0 has a virtual directory /IISADMPWD which contains files that can be used as proxies for brute force password attacks, or to identify valid users on the system.

Affected Software

Name	Vendor	Start Version	End Version
Internet_information_server	Microsoft	4.0 (including)	4.0 (including)

References

http://marc.info/?l=bugtraq\u0026m=91983486431506\u0026w=2
http://marc.info/?l=bugtraq\u0026m=92000623021036\u0026w=2
http://marc.info/?l=bugtraq\u0026m=91983486431506\u0026w=2
http://marc.info/?l=bugtraq\u0026m=92000623021036\u0026w=2