Remote Data Service Vulnerability in Microsoft Data Access Components
CVE-1999-1011

Currently unrated

Key Information:

Vendor: Microsoft
Status: Site Server; Data Access Components; Internet Information Server; Index Server
Vendor: CVE Published:; 19 July 1999

Summary

The Remote Data Service (RDS) DataFactory component within Microsoft Data Access Components (MDAC) poses a significant security risk in Internet Information Services (IIS) versions 3.x and 4.x. This vulnerability allows remote attackers to exploit unsafe methods to execute arbitrary commands on the affected server. It is crucial for organizations using these versions of IIS to implement the necessary security updates to mitigate potential attacks.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://www.securityfocus.com/bid/529

vdb-entryx_refsource_BID

http://www.osvdb.org/272

vdb-entryx_refsource_OSVDB

EPSS Score

79% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Dec 21, 1999
Vulnerability published
Jul 19, 1999