← CVECheck
HomeVulnerabilities

CVE-1999-0278 — MEDIUM severity vulnerability (In IIS, remote attackers can obtain source code for ASP file)

In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.

CVE IDCVE-1999-0278
SeverityMEDIUM
CVSS score5.0
CVSS vectorAV:N/AC:L/Au:N/C:P/I:N/A:N
CWENVD-CWE-Other
StatusModified
Published1998-06-01
Last modified2026-04-16
DescriptionIn IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
SourceNIST National Vulnerability Database

🔍 Search all vulnerabilities →