Vulnerabilities > CVE-2000-0097 - Unspecified vulnerability in Microsoft Index Server 2.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
NONE Availability impact
NONE Summary
The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | Microsoft Index Server 2.0/Indexing Services for Windows 2000 Directory Traversal. CVE-2000-0097. Remote exploit for windows platform |
id | EDB-ID:19731 |
last seen | 2016-02-02 |
modified | 2000-01-26 |
published | 2000-01-26 |
reporter | fredrik.widlund |
source | https://www.exploit-db.com/download/19731/ |
title | Microsoft index server 2.0/indexing services for windows 2000 - Directory Traversal |
Nessus
NASL family | Web Servers |
NASL id | MS_INDEX_SERVER.NASL |
description | It is possible to get the source code of ASP scripts by issuing a specially crafted request. ASP source codes usually contain sensitive information such as usernames and passwords. |
last seen | 2020-06-01 |
modified | 2020-06-02 |
plugin id | 10356 |
published | 2000-04-01 |
reporter | This script is Copyright (C) 2000-2018 Tenable Network Security, Inc. |
source | https://www.tenable.com/plugins/nessus/10356 |
title | Microsoft IIS WebHits null.htw .asp Source Disclosure |
code |
|