CVE-2000-0302
published 2000-03-31CVE-2000-0302: Microsoft Index Server allows remote attackers to view the source code of ASP files by appending a %20 to the filename in the CiWebHitsFile argument to the…
PriorityP432medium5CVSS 2.0
AVNACLAuNCPINAN
EXPLOIT
EPSS
78.43%
99.5th percentile
Microsoft Index Server allows remote attackers to view the source code of ASP files by appending a %20 to the filename in the CiWebHitsFile argument to the null.htw URL.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | index_server | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Detect HTTP requests to null.htw containing the CiWebHitsFile parameter with a trailing %20 appended to a filename, which is the exploit trigger for ASP source disclosure. ↗
- →Alert on any HTTP GET request URI matching the pattern: /null.htw?CiWebHitsFile=*%20& — the %20 trailing the filename in CiWebHitsFile is the key exploit indicator. ↗
- →Monitor for requests combining CiWebHitsFile (with %20-suffixed filename), CiRestriction=none, and CiHiliteType=Full as a high-confidence exploit signature. ↗
- ·The attack is possible on any IIS host with Index Server installed, even if no legitimate .htw files exist, because null.htw is a virtual in-memory file — absence of .htw files on disk does NOT indicate the system is safe. ↗
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=95453598317340&w=2http://www.osvdb.org/271http://www.securityfocus.com/bid/1084https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006http://marc.info/?l=bugtraq&m=95453598317340&w=2http://www.osvdb.org/271http://www.securityfocus.com/bid/1084https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006
2000-03-31
Published