exploitDog

CVE-2000-0710

Опубликовано: 20 окт. 2000

Источник: nvd

CVSS2: 5

EPSS Средний

Описание

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

Ссылки

http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html
Patch
Vendor Advisory
http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
http://www.securityfocus.com/bid/1608
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html
Patch
Vendor Advisory
http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp
http://www.securityfocus.com/bid/1608
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:frontpage:*:*:*:*:*:*:*:*

EPSS

Процентиль: 98%

0.55141

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-7cv3-2v97-6cpf

github

больше 3 лет назад

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

EPSS

Процентиль: 98%

0.55141

Средний

5 Medium

CVSS2

Дефекты

NVD-CWE-Other