Public exploit available
Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-1999-0681

4 documents4 sources
Severity
5.0MEDIUM
EPSS
12.4%
top 6.12%
CISA KEV
Not in KEV
Exploit
PoC available
Public exploit / PoC exists
Affected products
2
Microsoft FrontpageMicrosoft Personal WEB Server
Timeline
PublishedMar 12
Latest updateApr 30

Description

Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote attackers to cause a denial of service via a long URL.

CVSS vector

AV:N/AC:L/C:N/I:N/A:PExploitability: 10.0 | Impact: 2.9

Affected Packages2 packages

NVDmicrosoft/frontpage97, 98+1

🔴Vulnerability Details

2
GHSA
GHSA-wj24-pvf2-wxpm: Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 32022-04-30
CVEList
CVE-1999-0681: Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 32001-05-07

💥Exploits & PoCs

1
Exploit-DB
Microsoft FrontPage Personal Web Server 1.0 - PWS Denial of Service1999-08-08
CVE-1999-0681 (MEDIUM CVSS 5) | Buffer overflow in Microsoft FrontP | cvebase.io