Public exploit available

Public proof-of-concept or exploit code exists (ExploitDB / Metasploit / Nuclei).

CVE-2000-0256

5 documents4 sources

Severity

7.5HIGH

EPSS

21.6%

top 4.28%

CISA KEV

Not in KEV

Exploit

PoC available

Public exploit / PoC exists

Affected products

Microsoft Personal WEB Server Microsoft Windows NT

Timeline

PublishedApr 19

Latest updateApr 30

Description

Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available through the web site, aka the "Server-Side Image Map Components" vulnerability.

CVSS vector

AV:N/AC:L/C:P/I:P/A:PExploitability: 10.0 | Impact: 6.4

Affected Packages2 packages

▶NVDmicrosoft/personal_web_server2.0

▶NVDmicrosoft/windows_nt4.0

Patches

Patch: www.securityfocus.com ↗Patch: www.securityfocus.com ↗

🔴Vulnerability Details

GHSA

GHSA-52gp-xhpr-89c9: Buffer overflows in htimage↗2022-04-30

▶

CVEList

CVE-2000-0256: Buffer overflows in htimage↗2000-04-26

▶

💥Exploits & PoCs

Exploit-DB

War-FTPD 1.65 - Password Overflow (Metasploit)↗2010-07-03

▶

Exploit-DB

FrontPage 97/98 - Server Image Mapper Buffer Overflow↗2000-04-19

▶