91 matches found
Переполнение буфера в FrontPage Server Extensions (RAD buffer overflow)
Переполнение буфера в компоненте Visual Studio RAD...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow (MS03-051) (Metasploit)
Microsoft Visual Studio RAD Support - Remote Buffer Overflow MS03-051 Metasploit source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow
Microsoft Visual Studio RAD Support - Remote Buffer Overflow // source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow ...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow (MS03-051) (Metasploit)
source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary commands in the context of...
Microsoft Visual Studio RAD Support - Remote Buffer Overflow
// source: https://www.securityfocus.com/bid/2906/info Due to an unchecked buffer in a subcomponent of FrontPage Server Extensions Visual InterDev RAD Remote Deployment Support, a specially crafted request via 'fp30reg.dll' could allow a user to execute arbitrary commands in the context of...
CVE-2001-0096
CVE-2001-0096 describes a denial-of-service flaw in Microsoft IIS FrontPage Server Extensions (FPSE) on IIS 4.0/5.0, where a remote attacker can crash the server via a malformed web form submission. OpenVAS/Nessus classify this as a remote DoS that renders the service unusable. Public references ...
CVE-2001-0096
FrontPage Server Extensions FPSE in IIS 4.0 and 5.0 allows remote attackers to cause a denial of service via a malformed form, aka the "Malformed Web Form Submission" vulnerability...
CVE-2001-0096
FrontPage Server Extensions FPSE in IIS 4.0 and 5.0 allows remote attackers to cause a denial of service via a malformed form, aka the "Malformed Web Form Submission" vulnerability...
DoS против IIS через FrontPage Server Extensions (Web Form Submission)
Определенный запрос к FPSE приводит к кразу IIS...
Security Bulletin MS00-100
Microsoft Security Bulletin MS00-100 Patch Available for “Malformed Web Form Submission” Vulnerability Originally posted: December 22, 2000 Summary Microsoft has released a patch that eliminates a security vulnerability in a component that ships as part of Microsoft® Internet Information Server...
CVE-2000-0709
The CVE-2000-0709 issue affects Microsoft FrontPage 2000 Server Extensions 1.1, specifically the shtml.exe component. A remote attacker can trigger a denial-of-service condition by requesting a URL whose path includes a standard DOS device name, leading to partial availability impact as described...
Xato Advisory: FrontPage DOS Device DoS
----------------------------------------------------------------------- Xato Network Security, Inc. www.xato.net Security Advisory XATO-082000-01 August 17, 2000 FRONTPAGE SERVER EXTENSIONS SHTML.EXE DENIAL OF SERVICE --DOS Device DoS--...
IIS 5.0 cross site scripting vulnerability - using .shtml files or /_vti_bin/shtml.dll
Georgi Guninski security advisory 19, 2000 IIS 5.0 cross site scripting vulnerability - using .shtml files or /vtibin/shtml.dll This advisory describes two vulnerabilites one is already fixed by Microsoft but I decided to put them together. Systems affected: IIS 5.0/Windows 2000. Exploited with...
Translate:f summary, history and thoughts
Because Microsoft went the way of HIDING the actual mechanism of Translate:f from all of us original KB article is gone and new Security Bulletin is playing nasty game of downplaying the problem, i have decided to write follow up with sufficient information. HOW IT WORKS -------------------------...
Microsoft IIS FrontPage Server Extensions (FPSE) shtml.exe Path Disclosure
The version of FrontPage Extensions running on the remote host has an information disclosure vulnerability. Using a non-existent file as an argument to the 'shtml.exe' CGI reveals the local absolute path of the web root. A remote attacker could use this information to mount further attacks. C...
shtml.exe reveal local path of IIS web directory
I found there is a security problem about shtml.exe that allows anyone to explore the local path of IIS web server. Tested on windows2000 server.shtml.exe is a program issued with Forntpage Extention server for viewing smart HTML file, If we install Frontpage on Windows2000 server, a directory...
FrontPage 2000 / IIS 4.0/5.0 - Server Extensions Full Path Disclosure
source: https://www.securityfocus.com/bid/1174/info The local path of a HTML, HTM, ASP, or SHTML file can be disclosed in Microsoft IIS 4.0/5.0 / Frontpage Server Extensions 1.1 and prior. Passing a path to a non-existent file to the shtml.exe or shtml.dll depending on platform program will displ...
FrontPage 2000 IIS 4.05.0 - Server Extensions Full Path Disclosure
FrontPage 2000 IIS 4.05.0 - Server Extensions Full Path Disclosure source: https://www.securityfocus.com/bid/1174/info The local path of a HTML, HTM, ASP, or SHTML file can be disclosed in Microsoft IIS 4.0/5.0 / Frontpage Server Extensions 1.1 and prior. Passing a path to a non-existent file to...
CVE-2000-0256
Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components" vulnerability...
CVE-2000-0256
The CVE-2000-0256 entry describes buffer overflows in FrontPage 97/98 Server Extensions, specifically htimage.exe (and Imagemap.exe) that allow a remote attacker to perform actions beyond the web site’s scope. A concrete exploit path is documented for htimage.exe via /cgi-bin/htimage.exe/AAAA[......