Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.
References
Link | Resource |
---|---|
http://online.securityfocus.com/archive/1/255555 | Broken Link |
http://online.securityfocus.com/archive/1/256125 | Broken Link |
http://www.securityfocus.com/bid/4084 | Third Party Advisory VDB Entry |
Configurations
History
No history.
Information
Published : 2002-12-31 05:00
Updated : 2024-02-28 10:24
NVD link : CVE-2002-1718
Mitre link : CVE-2002-1718
CVE.ORG link : CVE-2002-1718
JSON object : View
Products Affected
microsoft
- internet_information_services
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor