CVE-2002-1718

CWE-200Information Exposure3 documents3 sources
Severity
5.0MEDIUM
EPSS
25.3%
top 3.80%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Microsoft Internet Information Services
Timeline
PublishedDec 31
Latest updateApr 30

Description

Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Extension (FPSE) file, as claimed using an HTTP request for colegal.htm that contains .. (dot dot) sequences.

CVSS vector

AV:N/AC:L/C:P/I:N/A:NExploitability: 10.0 | Impact: 2.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-wcm7-265h-vxc3: Microsoft Internet Information Server (IIS) 52022-04-30
CVEList
CVE-2002-1718: Microsoft Internet Information Server (IIS) 52005-06-21
CVE-2002-1718 (MEDIUM CVSS 5) | Microsoft Internet Information Serv | cvebase.io