Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.
References
Link | Resource |
---|---|
http://online.securityfocus.com/archive/1/255555 | Broken Link |
http://online.securityfocus.com/archive/1/256125 | Broken Link |
http://www.securityfocus.com/bid/4084 | Third Party Advisory VDB Entry |
http://online.securityfocus.com/archive/1/255555 | Broken Link |
http://online.securityfocus.com/archive/1/256125 | Broken Link |
http://www.securityfocus.com/bid/4084 | Third Party Advisory VDB Entry |
Configurations
History
20 Nov 2024, 23:41
Type | Values Removed | Values Added |
---|---|---|
References | () http://online.securityfocus.com/archive/1/255555 - Broken Link | |
References | () http://online.securityfocus.com/archive/1/256125 - Broken Link | |
References | () http://www.securityfocus.com/bid/4084 - Third Party Advisory, VDB Entry |
Information
Published : 2002-12-31 05:00
Updated : 2024-11-20 23:41
NVD link : CVE-2002-1718
Mitre link : CVE-2002-1718
CVE.ORG link : CVE-2002-1718
JSON object : View
Products Affected
microsoft
- internet_information_services
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor