Description

Microsoft IIS for Far East editions 4.0 and 5.0 allows remote attackers to read source code for parsed pages via a malformed URL that uses the lead-byte of a double-byte character.

Remediation

References

CVE-2000-1090

Related Vulnerabilities

Oracle HTTP Server Out-of-bounds Write Vulnerability (CVE-2021-4034)

MongoDb Other Vulnerability (CVE-2020-7929)

WordPress Plugin WordPress File Upload Arbitrary File Upload (3.8.5)

WordPress Plugin SAML SP Single Sign On-SSO login Unspecified Vulnerability (4.8.75)

WordPress Plugin Contact Form by BestWebSoft Cross-Site Request Forgery (3.82)

Severity

Medium

Classification

CVE-2000-1090

Tags

Missing Update Known Vulnerabilities