Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2000-0710

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2000-0710
Last Modified 05 Sep 2008 04:21:41
Published 20 Oct 2000 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact NONE NONE
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2000-0710

Summary

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

Vulnerable Systems

Application

  • Microsoft Frontpage


References

BID - 1608

BUGTRAQ - 20000823 Xato Advisory: FrontPage DOS Device DoS

CONFIRM - http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp


Last Updated: 27 May 2016 10:35:50