CVE-2000-0114
CVSS 2.0 Score 5.0 of 10 (medium)
Details
Published Feb 2, 2000
Updated: Nov 20, 2024
Summary
CVE-2000-0114 is a vulnerability affecting the Frontpage Server Extensions. maliciously crafted RPC POST requests can be sent to the shtml.dll file located in the /_vti_bin/ virtual directory, enabling remote attackers to identify the name of the anonymous account. This information disclosure could potentially be used in further attacks against the system. The Frontpage Server Extensions should be updated to address this issue in order to prevent unauthorized access.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Share
Affected Products
- Microsoft IIS
Affected Vendors
- Microsoft