CVE-2000-0246
published 2000-03-30CVE-2000-0246: IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the…
medium5CVSS 3.1
AVNACLAuNCPINAN
EXPLOIT
IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.
Affected
7 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | commercial_internet_system | — | — |
| microsoft | commercial_internet_system | — | — |
| microsoft | internet_information_server | — | — |
| microsoft | internet_information_services | — | — |
| microsoft | proxy_server | — | — |
| microsoft | site_server | — | — |
| microsoft | site_server_commerce | — | — |