Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
5
CVSSv2

CVE-1999-1375

Published: 11/02/1999 Updated: 18/10/2016
CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10
VMScore: 505
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Subscribe to Microsoft

Vulnerability Summary

FileSystemObject (FSO) in the showfile.asp Active Server Page (ASP) allows remote malicious users to read arbitrary files by specifying the name in the file parameter.

Vulnerable Product Search on Vulmon Subscribe to Product

microsoft internet information server 3.0

microsoft internet information server 4.0

Exploits

Exploit DB: Microsoft IIS 3.0/4.0 - Using ASP and FSO To Read Server Files
source: wwwsecurityfocuscom/bid/230/info The File System Object (FSO) may be called from an Active Server Page (ASP) to display files that exist outside of the web server's root directory FSO allows calls to be made utilizing "/" to exit the local directory path An example of this syntax would be: wwwserverfoo/showfileasp? ...

References

NVD-CWE-Otherhttp://www.securityfocus.com/bid/230http://marc.info/?l=ntbugtraq&m=91877455626320&w=2https://nvd.nist.govhttps://www.exploit-db.com/exploits/19194/
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700CVE-2022-48689CVE-2024-27956CVE-2023-6363SQLNULL pointer dereferenceCVE-2023-41830CVE-2015-2051arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook