CVE-2000-0710

Currently unrated

Key Information:

Vendor: Microsoft
Status: Frontpage
Vendor: CVE Published:; 20 October 2000

Summary

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

References

http://msdn.microsoft.com/workshop/languages/fp/2000/sr12...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/1608

vdb-entryx_refsource_BID

http://archives.neohapsis.com/archives/bugtraq/2000-08/02...

mailing-listx_refsource_BUGTRAQ

EPSS Score

82% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Oct 20, 2000
Vulnerability Reserved
Sep 19, 2000

Collectors

NVD DatabaseMitre Database