Path Disclosure Vulnerability in Microsoft FrontPage 2000 Server Extensions 1.1

Path Disclosure Vulnerability in Microsoft FrontPage 2000 Server Extensions 1.1

CVE-2000-0710 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

Learn more about our Cis Benchmark Audit For Server Software.