Path Disclosure Vulnerability in Microsoft Index Server
CVE-2000-0098

Currently unrated

Key Information:

Vendor: Microsoft
Status: Index Server
Vendor: CVE Published:; 26 January 2000

What is CVE-2000-0098?

A vulnerability present in Microsoft Index Server allows remote attackers to exploit the server by sending requests for non-existent Internet Data Query files. This weakness can lead to the exposure of real paths of web directories, potentially giving attackers insights into the directory structure and aiding in further attacks on the server. It is critical to secure your Index Server installations by applying the necessary updates and mitigating exposure.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

82% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Feb 2, 2000
Vulnerability published
Jan 26, 2000