Published: 06/05/2000 Updated: 30/10/2018

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 505

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote malicious users to determine the physical path of HTML, HTM, ASP, and SHTML files by requesting a file that does not exist, which generates an error message that reveals the path.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft frontpage
microsoft internet information server 4.0
microsoft internet information services 5.0

source: wwwsecurityfocuscom/bid/1174/info The local path of a HTML, HTM, ASP, or SHTML file can be disclosed in Microsoft IIS 40/50 / Frontpage Server Extensions 11 and prior Passing a path to a non-existent file to the shtmlexe or shtmldll (depending on platform) program will display an error message stating that the file cannot be ...

A Jenkins end-to-end DevSecOps pipeline for Python web application.

DevSecOps pipeline for Python project A Jenkins end-to-end DevSecOps pipeline for Python web application Jenkins instance/environment hosted on AWS EC2 (Ubuntu 1804) or local environment (on your laptop/workstation/on-prem ubuntu server) Features summary: Select appropriate security tools and sample python project Set up Jenkins server using docker (Dockerfile) and pipelin

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2000-05/0084.html http://www.securityfocus.com/bid/1174 https://nvd.nist.gov https://github.com/adavarski/DevSecOps-pipeline-python https://www.exploit-db.com/exploits/19897/

CVE-2000-0413

Vulnerability Summary

Exploits

Github Repositories

References

Vulmon Search

About

Products

Connect