Summary
This host is running Microsoft FrontPage Server Extensions and is prone to denial of service vulnerability.
Impact
Successful exploitation will allow remote attackers to cause denial of service conditions.
Impact Level: Application
Solution
Upgrade to Microsoft FrontPage 2000 Server Extensions 1.2 or later, For updates refer to http://office.microsoft.com
Insight
The flaw is due to an error in the 'shtml.exe' component, which allows remote attackers to cause a denial of service in some components by requesting a URL whose name includes a standard DOS device name.
Affected
Microsoft FrontPage 2000 Server Extensions 1.1
References
Severity
Classification
-
CVE CVE-2000-0709 -
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:N/I:N/A:P
Related Vulnerabilities
- IBM WebSphere Application Server (WAS) Security Bypass Vulnerability
- F*EX (Frams's Fast File EXchange) Multiple XSS Vulnerabilities
- HTTP File Server Security Bypass and Denial of Service Vulnerabilities
- Kolibri Webserver 'HEAD' Request Processing Buffer Overflow Vulnerability
- Arbor Networks Peakflow SP 'index/' Cross Site Scripting Vulnerability