Published: 20/10/2000 Updated: 07/11/2023

CVSS v2 Base Score: 5 | Impact Score: 2.9 | Exploitability Score: 10

VMScore: 510

Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N

IIS 5.0 allows remote malicious users to obtain source code for .ASP files and other scripts via an HTTP GET request with a "Translate: f" header, aka the "Specialized Header" vulnerability.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet information services 5.0

source: wwwsecurityfocuscom/bid/1578/info Microsoft IIS 50 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc files The scripting engines handle requests for these file types, processes them accordingly, and then executes them on the server It is possible to force the server to send back the source ...

source: wwwsecurityfocuscom/bid/1578/info Microsoft IIS 50 has a dedicated scripting engine for advanced file types such as ASP, ASA, HTR, etc files The scripting engines handle requests for these file types, processes them accordingly, and then executes them on the server It is possible to force the server to send back the source of ...

NVD-CWE-Other http://www.ntbugtraq.com/default.asp?pid=36&sid=1&A2=ind0008&L=ntbugtraq&F=&S=&P=5212 http://www.securityfocus.com/bid/1578 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A927 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-058 http://www.securityfocus.com/templates/archive.pike?list=1&msg=080D5336D882D211B56B0060080F2CD696A7C9%40beta.mia.cz https://nvd.nist.gov https://www.exploit-db.com/exploits/20152/

CVE-2000-0778

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect