exploitDog

CVE-2000-1105

Опубликовано: 09 янв. 2001

Источник: nvd

CVSS2: 4.3

EPSS Средний

Описание

The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled.

Ссылки

http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0074.html
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/144270
http://www.securityfocus.com/bid/1933
Exploit
Patch
Vendor Advisory
http://archives.neohapsis.com/archives/win2ksecadvice/2000-q4/0074.html
Exploit
Patch
Vendor Advisory
http://www.securityfocus.com/archive/1/144270
http://www.securityfocus.com/bid/1933
Exploit
Patch
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:microsoft:indexing_service:*:*:windows_2000:*:*:*:*:*

EPSS

Процентиль: 97%

0.31436

Средний

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

GHSA-hrjf-28rx-wf7r

github

больше 3 лет назад

The ixsso.query ActiveX Object is marked as safe for scripting, which allows malicious web site operators to embed a script that remotely determines the existence of files on visiting Windows 2000 systems that have Indexing Services enabled.

EPSS

Процентиль: 97%

0.31436

Средний

4.3 Medium

CVSS2

Дефекты

NVD-CWE-Other