What is CVE-2000-0710?

CVE-2000-0710 is a vulnerability in N/a. Published 2000-09-21.

Is CVE-2000-0710 known to be exploited?

2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in N/a

CVE-2000-0710

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by requesting an invalid URL whose name includes a standard DOS device name.

EPSS: 0.551 (98.1th percentile) — read the EPSS interpretation.

Affected products

N/a — versions n/a

Public proof-of-concept exploits

adavarski/DevSecOps-pipeline-python
carlregencia/DevSecOps-pipeline-python

References

msdn.microsoft.com/workshop/languages/fp/2000/sr12.asp (x_refsource_CONFIRM)
1608 (vdb-entry, x_refsource_BID)
20000823 Xato Advisory: FrontPage DOS Device DoS (mailing-list, x_refsource_BUGTRAQ)

Frequently asked questions

What is CVE-2000-0710?: CVE-2000-0710 is a vulnerability in N/a. Published 2000-09-21.
Is CVE-2000-0710 known to be exploited?: 2 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.