WebDAV Request Vulnerability in Microsoft Data Access Component Internet Publishing Provider
CVE-2001-0238

Currently unrated

Key Information:

Vendor: Microsoft
Status: Windows Nt; Windows 2000; Windows 98se; Windows 95
Vendor: CVE Published:; 2 July 2001

What is CVE-2001-0238?

The Microsoft Data Access Component Internet Publishing Provider, specifically version 8.103.2519.0 and earlier, is susceptible to a vulnerability that allows remote attackers to bypass Security Zone restrictions through crafted WebDAV requests. This weakness can potentially enable unauthorized access to sensitive resources, exposing systems to further exploitation.

References

http://www.ciac.org/ciac/bulletins/l-074.shtml

third-party-advisorygovernment-resourcex_refsource_CIAC

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

https://exchange.xforce.ibmcloud.com/vulnerabilities/6405

vdb-entryx_refsource_XF

EPSS Score

5% chance of being exploited in the next 30 days.

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 2, 2001
Vulnerability Reserved
Mar 19, 2001