Information Disclosure Vulnerability in Microsoft Index Server 2.0
CVE-2001-0986

Currently unrated

Key Information:

Vendor

Microsoft
Status
Index Server
Vendor
CVE Published:
14 September 2001

What is CVE-2001-0986?

The SQLQHit.asp sample file in Microsoft Index Server 2.0 is susceptible to an information disclosure vulnerability. This flaw allows unauthorized remote attackers to exploit the application by invoking sqlqhit.asp with specific CiScope parameter values. By doing so, attackers can gain access to sensitive data, including the physical file paths, file attributes, and sections of the source code, which can lead to further exploitation of the server's configuration and data.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://www.securityfocus.com/bid/3339
vdb-entryx_refsource_BID
http://www.securityfocus.com/archive/1/214217
mailing-listx_refsource_BUGTRAQ
https://exchange.xforce.ibmcloud.com/vulnerabilities/7125
vdb-entryx_refsource_XF

EPSS Score

74% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability Reserved

  • Vulnerability published

JSON
.