Vulnerability   
Search   
    Search 219043 CVE descriptions
and 99761 test descriptions,
access 10,000+ cross references.
Tests   CVE   All  

CVE ID:CVE-2000-0457
Description:ISM.DLL in IIS 4.0 and 5.0 allows remote attackers to read file contents by requesting the file and appending a large number of encoded spaces (%20) and terminated with a .htr extension, aka the ".HTR File Fragment Reading" or "File Fragment Reading via .HTR" vulnerability.
Test IDs: None available
Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2000-0457
BugTraq ID: 1193
http://www.securityfocus.com/bid/1193
Bugtraq: 20000511 Alert: IIS ism.dll exposes file contents (Google Search)
http://marc.info/?l=bugtraq&m=95810120719608&w=2
Microsoft Security Bulletin: MS00-031
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-031
XForce ISS Database: iis-ism-file-access(4448)
https://exchange.xforce.ibmcloud.com/vulnerabilities/4448




© 1998-2024 E-Soft Inc. All rights reserved.