22 matches found
EUVD-2007-6465
Malware in sbrugna...
Exploit for CVE-2000-0114
This is a collection of vulnerability templates for the Nuclei vulnerability scanner. The templates are organized by CVE ID and include information such as the vulnerability name, description, severity, and remediation steps. The templates also include HTTP requests and matchers to identify the...
Design/Logic Flaw
Unspecified vulnerability in Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to uninstall the FrontPage extensions of an arbitrary account via a request to fp2002/UNINSTAL.asp with a "host id IIS value."...
CVE-2007-6499
Unspecified vulnerability in Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to uninstall the FrontPage extensions of an arbitrary account via a request to fp2002/UNINSTAL.asp with a "host id IIS value."...
CVE-2007-6499
Unspecified vulnerability in Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to uninstall the FrontPage extensions of an arbitrary account via a request to fp2002/UNINSTAL.asp with a "host id IIS value."...
CVE-2007-6499
Unspecified vulnerability in Hosting Controller 6.1 Hot fix 3.3 and earlier allows remote authenticated users to uninstall the FrontPage extensions of an arbitrary account via a request to fp2002/UNINSTAL.asp with a "host id IIS value."...
CVE-2007-6499
The CVE-2007-6499 entry concerns Hosting Controller 6.1 Hotfix 3.3 and earlier. Affected component: the FrontPage extensions uninstall feature via the fp2002/UNINSTAL.asp endpoint, where a remote authenticated user could trigger uninstall of FrontPage extensions for an arbitrary account by supply...
hc-multi.txt
Title: Multiple Security Bugs In Hosting Controller Critical: Extremely critical Impact: Full system administrator access Vendor: Hosting Controller Version: 6.1 Hot fix = 3.3 Vendor URL: www.hostingcontroller.com Solution: N/A From company - There is temporary solution in this report Exploit:...
IIS FrontPage DoS
Microsoft IIS, running Frontpage extensions, is vulnerable to a remote DoS attack usually called the 'malformed web submission' vulnerability. An attacker, exploiting this vulnerability, will be able to render the service unusable. If this machine serves a business-critical functionality, there...
Microsoft IIS FrontPage Extensions Detection
Binary data 2180.prm...
Microsoft FrontPage Extensions Detection
Binary data 1690.prm...
Microsoft FrontPage Extensions Detection
Binary data 1689.prm...
Frontpage Extensions Remote Command Execution
======================================================================== = Frontpage Extensions Remote Command Execution = = MS Bulletin posted: = http ://www.microsoft.com/technet/security/bulletin/ms03-051.asp = = Affected Software: = Microsoft Windows 2000 Service Pack 2, Service Pack 3 =...
Microsoft IIS Frontpage Server Extensions (FPSE) Malformed Form DoS
Microsoft IIS, running Frontpage extensions, is vulnerable to a remote denial of service attack usually called the 'malformed web submission' vulnerability. An attacker, exploiting this vulnerability, will be able to render the service unusable. If this machine serves a business-critical function...
MS02-053: Microsoft FrontPage Extensions shtml.exe Remote Overflow (uncredentialed check)
The remote host has FrontPage Server Extensions FPSE installed. There is a denial of service / buffer overflow condition in the program 'shtml.exe' which comes with it. However, no public detail has been given regarding this issue yet, so it's not possible to remotely determine if you are...
Microsoft Internet Information Server (IIS) vulnerable to DoS when URL request exceeds maximum allowed length
Overview Intruders may be able to cause the IIS service to fail by sending a particular kind of overly-long URL. Description ISAPI is a programming interface to IIS that can be used to modify or extend the behavior of IIS. Programs written using ISAPI are known as either filters or extension,...
MS01-035: Microsoft IIS FrontPage fp30reg.dll Remote Overflow (uncredentialed check)
Microsoft IIS, running Frontpage extensions, is vulnerable to a remote buffer overflow attack. An attacker, exploiting this bug, may gain access to confidential data, critical business processes, and elevated privileges on the attached network. %NASLMINLEVEL 70300 This script was written by John...
CVE-2000-0413
The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting a file that does not exist, which generates an error message that reveals the path...
CVE-2000-0413
The vulnerability CVE-2000-0413 affects the FrontPage Server Extensions shtml.exe component in IIS 4.0/5.0. A remote attacker can trigger an error by requesting a non-existent HTML/HTM/ASP/SHTML file, causing the server to reveal the local absolute path of the web root in the error message. This ...
windows2k.iss
I found there is a security problem about shtml.exe that allows anyone to explore the local path of IIS web server. Tested on windows2000 server.shtml.exe is a program issued with Forntpage Extention server for viewing smart HTML file, If we install Frontpage on Windows2000 server, a directory...