CVE-1999-0278
In IIS, remote attackers can obtain source code for ASP files by appending "::$DATA" to the URL.
Date published : 1999-09-29
https://docs.microsoft.com/en-us/security-updates/securitybulletins/1998/ms98-003
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A913