CVE-2007-3109

Currently unrated

Key Information:

Vendor: Microsoft
Status: Office; Frontpage
Vendor: CVE Published:; 7 June 2007

Summary

The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitrary files under the web root via a relative pathname in the PATH_INFO.

References

http://www.securityfocus.com/archive/1/470458/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://osvdb.org/42058

vdb-entryx_refsource_OSVDB

http://securityreason.com/securityalert/2784

third-party-advisoryx_refsource_SREASON

EPSS Score

1% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Jun 7, 2007
Vulnerability Reserved
Jun 7, 2007

Collectors

NVD DatabaseMitre Database