CVE-2000-0710

Published: Oct 20, 2000Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

Affected (1)

Products: Microsoft: Frontpage

Microsoft

1 product

Frontpage

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Microsoft Frontpage	All versions

References (6)

http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html

Source: cve@mitre.org

PatchVendor Advisory

http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp

Source: cve@mitre.org

http://www.securityfocus.com/bid/1608

Source: cve@mitre.org

PatchVendor Advisory

http://archives.neohapsis.com/archives/bugtraq/2000-08/0288.html

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

http://msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/1608

Source: af854a3a-2127-422b-91ae-364da2661108

PatchVendor Advisory

Timeline

No history available yet.