Unrated severityNVD Advisory· Published Jan 24, 1999· Updated Apr 16, 2026

CVE-1999-1544

Description

Buffer overflow in FTP server in Microsoft IIS 3.0 and 4.0 allows local and sometimes remote attackers to cause a denial of service via a long NLST (ls) command.

Affected products

Microsoft/Internet Information Server2 versions
cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:microsoft:internet_information_server:3.0:*:*:*:*:*:*:*
- cpe:2.3:a:microsoft:internet_information_server:4.0:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

marc.infonvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.005
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000