CVE-2001-0986 in IISinformazioni

Riassunto

di MITRE

SQLQHit.asp sample file in Microsoft Index Server 2.0 allows remote attackers to obtain sensitive information such as the physical path, file attributes, or portions of source code by directly calling sqlqhit.asp with a CiScope parameter set to (1) webinfo, (2) extended_fileinfo, (3) extended_webinfo, or (4) fileinfo.

Be aware that VulDB is the high quality source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Divulgazione

14/09/2001

Moderazione

accettato

Voce

VDB-17360

CPE

pronto

CWE

CWE-200 (confermato)

Sfruttamento

Scaricare

CVSS

5.0 (NVD)

EPSS

0.48160

KEV

Attività

molto basso

Settore

Pharma, Hostingprovider, ...

Fonti

MITRE	https://www.cve.org/CVERecord?id=CVE-2001-0986
NVD	https://nvd.nist.gov/vuln/detail/CVE-2001-0986
CVE Details	https://www.cvedetails.com/cve/CVE-2001-0986/

◂ Precedente Visione D'ensemble Il prossimo ▸

Do you need the next level of professionalism?

Upgrade your account now!