Vulnerability in Microsoft Frontpage
CVE-2007-3109
The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitrary files under the web root via a relative pathname in the PATH_INFO.
EPSS: 0.109 (95.3th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Frontpage
- Microsoft Office
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (x_refsource_SREASON, third-party-advisory)