Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.
References
Link | Resource |
---|---|
http://online.securityfocus.com/archive/1/255555 | Broken Link |
http://online.securityfocus.com/archive/1/256125 | Broken Link |
http://www.securityfocus.com/bid/4084 | Third Party Advisory VDB Entry |
Configurations
Information
Published : 2002-12-30 21:00
Updated : 2020-12-09 07:04
NVD link : CVE-2002-1718
Mitre link : CVE-2002-1718
JSON object : View
CWE
CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
Products Affected
microsoft
- internet_information_services