CVE-2000-0174

CVSS 2.0 Score 5 of 10 (medium)

Details

Published Mar 9, 2000

Updated: Nov 20, 2024

Summary

CVE-2000-0174 is a vulnerability affecting the StarScheduler web server in StarOffice. An attacker can exploit this issue by making a ".." (dot dot) request, which allows them to read arbitrary files on the affected system. This vulnerability poses a significant risk as it enables unauthorized access to sensitive information and could potentially lead to data theft or system compromise. The server should be patched or configured to prevent such attacks to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/NWlZDw
https://www.cve.org/CVERecord?id=CVE-2000-0174
https://nvd.nist.gov/vuln/detail/CVE-2000-0174

Back to Vulnerability Database

CVE-2000-0174

CVSS 2.0 Score 5 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations