Vulnerability CVE-1999-1011 - CERT Civis.Net

Vulnerability Name:

CVE-1999-1011 (CCN-1212)

Assigned:

1998-07-17

Published:

1998-07-17

Updated:

2018-10-15

Summary:

The Remote Data Service (RDS) DataFactory component of Microsoft Data Access Components (MDAC) in IIS 3.x and 4.x exposes unsafe methods, which allows remote attackers to execute arbitrary commands.

CVSS v3 Severity:

10.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H)

Exploitability Metrics:	Attack Vector (AV): Network Attack Complexity (AC): Low Privileges Required (PR): None User Interaction (UI): None
Scope:	Scope (S): Changed
Impact Metrics:	Confidentiality (C): High Integrity (I): High Availibility (A): High

CVSS v2 Severity:

10.0 High (CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Authentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

10.0 High (CCN CVSS v2 Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C)

Exploitability Metrics:	Access Vector (AV): Network Access Complexity (AC): Low Athentication (Au): None
Impact Metrics:	Confidentiality (C): Complete Integrity (I): Complete Availibility (A): Complete

Vulnerability Type:

Vulnerability Consequences:

Gain Access

References:

Source: MITRE
Type: CNA
CVE-1999-1011

Source: CCN
Type: CERT Incident Note IN-1999-08
Attacks against IIS web servers involving MDAC

Source: CCN
Type: CIAC Information Bulletin J-054
Unauthorized Access to IIS Servers through ODBC Data Access with RDS

Source: CIAC
Type: UNKNOWN
J-054

Source: CCN
Type: Internet Security Systems Security Alert #32
Vulnerabilities in Microsoft Remote Data Service

Source: CCN
Type: Microsoft Universal Data Access Download page
MDAC 2.5 RTM

Source: CCN
Type: Microsoft Security Bulletin MS99-025 FAQ
Microsoft Security Bulletin (MS99-025): Frequently Asked Questions

Source: CCN
Type: Microsoft Security Bulletin MS98-004
Unauthorized ODBC Data Access with RDS and IIS

Source: CCN
Type: Microsoft Security Bulletin MS99-025
Re-Release: Unauthorized Access to IIS Servers through ODBC Data Access with RDS

Source: CCN
Type: National Infrastructure Protection Center Advisory 99-027
"Remote Database Services Vulnerability (RDS)"

Source: CCN
Type: National Infrastructure Protection Center Advisory 00-060
"E-Commerce Vulnerabilities"

Source: OSVDB
Type: UNKNOWN
272

Source: CCN
Type: OSVDB ID: 272
Microsoft IIS MDAC RDS Arbitrary Remote Command Execution

Source: CCN
Type: BID-529
NT IIS MDAC RDS Vulnerability

Source: MS
Type: UNKNOWN
MS98-004

Source: MS
Type: UNKNOWN
MS99-025

Source: XF
Type: UNKNOWN
nt-iis-rds(1212)

Source: CCN
Type: Microsoft Knowledge Base Article 184375
Security Implications of RDS 1.5, IIS 3.0 or 4.0, and ODBC

Source: CCN
Type: Rapid7 Vulnerability & Exploit Database
MS99-025 Microsoft IIS MDAC msadcs.dll RDS Arbitrary Remote Command Execution

Source: BID
Type: UNKNOWN
529

Vulnerable Configuration:

Configuration 1:

cpe:/a:microsoft:data_access_components:1.5:*:*:*:*:*:*:*

OR cpe:/a:microsoft:data_access_components:2.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:data_access_components:2.1:*:*:*:*:*:*:*

OR cpe:/a:microsoft:index_server:2.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_information_services:3.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_information_services:4.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:site_server:3.0:*:*:*:*:*:*:*

Configuration CCN 1:

cpe:/a:microsoft:windows_nt:4.0:*:*:*:*:*:*:*

OR cpe:/a:microsoft:data_access_components:-:*:*:*:*:*:*:*

OR cpe:/o:microsoft:windows_2000:-:*:*:*:*:*:*:*

OR cpe:/a:microsoft:internet_information_services:4.0:*:*:*:*:*:*:*

Denotes that component is vulnerable