Path Disclosure Vulnerability in Microsoft Index Server
CVE-2000-0098

Currently unrated

Key Information:

Vendor: Microsoft
Status: Index Server
Vendor: CVE Published:; 26 January 2000

Summary

A vulnerability present in Microsoft Index Server allows remote attackers to exploit the server by sending requests for non-existent Internet Data Query files. This weakness can lead to the exposure of real paths of web directories, potentially giving attackers insights into the directory structure and aiding in further attacks on the server. It is critical to secure your Index Server installations by applying the necessary updates and mitigating exposure.

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

EPSS Score

67% chance of being exploited in the next 30 days.

Timeline

Vulnerability Reserved
Feb 2, 2000
Vulnerability published
Jan 26, 2000