22 matches found
Microsoft FrontPage Server Extensions Cross Site Scripting (MS06-017: CVE-2006-0015)
A Cross Site Scripting vulnerability exists in Microsoft FrontPage Server Extensions and Microsoft SharePoint Team Services. The vulnerability is caused as a result of the failure of these products to properly validate certain CGI parameters passed to them. This vulnerability allows arbitrary HTM...
Microsoft FrontPage Server Extensions Buffer Overrun (MS03-051: CVE-2003-0822)
A buffer overflow vulnerability exists in Microsoft FrontPage Server Extensions. The vulnerability is caused as a result of a debug functionality in fp30reg.dll. A remote attacker may exploit this issue by executing arbitrary code via a crafted chunked encoded request...
Microsoft FrontPage Server Extensions MS-DOS Device Name DoS Vulnerability (Aug 2000)
Microsoft FrontPage Server Extensions is prone to a denial of service DoS vulnerability. SPDX-FileCopyrightText: 2012 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...
Microsoft FrontPage Server Extensions跨站脚本漏洞(MS06-017)
FrontPage Server Extensions为FrontPage服务扩展,与IIS一起使用可以方便的支持管理、创建以及浏览FrontPage扩展的网站。 FrontPage Server Extensions对HTML页面的处理存在输入验证漏洞,远程攻击者可能在客户机器上执行任意脚本代码。 FrontPage Server Extensions的fpadmdll.dll中的一些参数没有正确的过滤返回给用户的特定输入,导致跨站脚本问题,可能允许攻击者以当前会话权限以客户机的浏览器中执行恶意脚本代码,利用这个漏洞必须用户交互。...
Vulnerability in Microsoft FrontPage Server Extensions Could Allow Cross-Site Scripting
Argeniss Security Advisory Name: Vulnerability in Microsoft FrontPage Server Extensions Could Allow Cross-Site Scripting MS06-17 Affected Software: Microsoft FrontPage Server Extensions 2002 and Microsoft SharePoint Team Services Severity: Medium Remote exploitable: Yes User intervention required...
Cross site scripting
Cross-site scripting XSS vulnerability in vtibin/vtiadm/fpadmdll.dll in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services allows remote attackers to inject arbitrary web script or HTML, then leverage the attack to execute arbitrary programs or create new accounts, via the 1...
CVE-2006-0015
Cross-site scripting XSS vulnerability in vtibin/vtiadm/fpadmdll.dll in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services allows remote attackers to inject arbitrary web script or HTML, then leverage the attack to execute arbitrary programs or create new accounts, via the 1...
FrontPage fp30reg.dll remote debug buffer overflow
Added: 01/30/2006 CVE: CVE-2003-0822 BID: 9007 OSVDB: 2952 Background Microsoft FrontPage Server Extensions includes a remote debugging function. Problem A buffer overflow in fp30reg.dll leads to a vulnerability in the remote debug function in FrontPage Server Extensions. A remote attacker could...
FrontPage fp30reg.dll remote debug buffer overflow
Added: 01/30/2006 CVE: CVE-2003-0822 BID: 9007 OSVDB: 2952 Background Microsoft FrontPage Server Extensions includes a remote debugging function. Problem A buffer overflow in fp30reg.dll leads to a vulnerability in the remote debug function in FrontPage Server Extensions. A remote attacker could...
FrontPage fp30reg.dll remote debug buffer overflow
Added: 01/30/2006 CVE: CVE-2003-0822 BID: 9007 OSVDB: 2952 Background Microsoft FrontPage Server Extensions includes a remote debugging function. Problem A buffer overflow in fp30reg.dll leads to a vulnerability in the remote debug function in FrontPage Server Extensions. A remote attacker could...
CVE-2002-0692
The CVE-2002-0692 issue concerns a buffer overflow in Microsoft FrontPage Server Extensions’ SmartHTML interpreter (shtml.dll). FPSE 2000 is affected by denial of service (CPU consumption); FPSE 2002 can allow remote code execution via a crafted web-file request. The vulnerability is tied to the ...
CVE-2003-0822
Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions FPSE 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request...
CVE-2003-0824
Unknown vulnerability in the SmartHTML interpreter shtml.dll in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service response failure via a certain request...
CVE-2003-0824
Unknown vulnerability in the SmartHTML interpreter shtml.dll in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service response failure via a certain request...
CVE-2003-0822
Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions FPSE 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request...
CVE-2003-0822
Affected software : Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002. Vulnerability : a buffer overflow in the debug functionality of fp30reg.dll (MS03-051) that can be triggered via a crafted chunked-encoded request, allowing remote code execution. Impact : remote attacker could execut...
Microsoft Security Bulletin MS03-051
Microsoft Security Bulletin MS03-051 Print Buffer Overrun in Microsoft FrontPage Server Extensions Could Allow Code Execution 813360 Issued: November 11, 2003 Version: 1.0 Summary Who should read this document: Customers using Microsoft® FrontPage Server Extensions ® Impact of vulnerability: Remo...
Microsoft FrontPage Server Extensions (fp30reg.dll) Debug Function Remote Overflow (MS03-051 / 813360)
The remote Microsoft FrontPage server seems vulnerable to a remote buffer overflow. Exploitation of this bug could give an unauthorized user access to the machine. The following systems are known to be vulnerable: Microsoft Windows 2000 Service Pack 2, Service Pack 3 Microsoft Windows XP, Microso...
Microsoft Frontpage Server buffer overflow
Buffer overflow in remote debugging interface...
Microsoft FrontPage Server Extensions SmartHTML Interpreter Denial Of Service Vulnerability
Description A denial of service vulnerability has been reported in the SmartHTML interpreter component of FrontPage Server Extensions that may be exploited by remote attackers. This issue could be exploited to deny availability of CPU resources on the system, potentially causing a denial of servi...