Vulnerabilities > CVE-1999-1397 - Unspecified vulnerability in Microsoft Index Server 2.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN Summary
Index Server 2.0 on IIS 4.0 stores physical path information in the ContentIndex\Catalogs subkey of the AllowedPaths registry key, whose permissions allows local and remote users to obtain the physical paths of directories that are being indexed.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
References
- http://marc.info/?l=bugtraq&m=92242671024118&w=2
- http://marc.info/?l=bugtraq&m=92242671024118&w=2
- http://marc.info/?l=ntbugtraq&m=92223293409756&w=2
- http://marc.info/?l=ntbugtraq&m=92223293409756&w=2
- http://www.iss.net/security_center/static/7559.php
- http://www.iss.net/security_center/static/7559.php
- http://www.securityfocus.com/bid/476
- http://www.securityfocus.com/bid/476