Microsoft Frontpage
23 CVEs affecting Microsoft Frontpage. Latest disclosed: 2013-09-11. Critical: 0, High: 2.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2007-0671 | High | 8.8 | 2007-02-03 | Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote user-assisted attackers to exe… |
CVE-1999-0012 | High | 7.0 | 1998-02-06 | Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names. |
CVE-2013-3137 | | 2013-09-11 | Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via crafted XML data in a FrontPage do… | |
CVE-2008-3068 | | 2008-07-07 | Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Revocation List (CRL) checks by… | |
CVE-2007-3109 | | 2007-06-07 | The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage allows remote attackers to determine the existence, and possibly partial contents, of arbitr… | |
CVE-2006-3877 | | 2006-10-10 | Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X for Mac allows user-assisted at… | |
CVE-2005-2143 | | 2005-07-05 | Microsoft Front Page allows attackers to cause a denial of service (crash) via a crafted style tag in a web page. | |
CVE-2004-2179 | | 2004-12-31 | asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service (hang) via a JPEG image with max… | |
CVE-2004-0573 | | 2004-09-28 | Buffer overflow in the converter for Microsoft WordPerfect 5.x on Office 2000, Office XP, Office 2003, and Works Suites 2001 through 2004 allows remote attacke… | |
CVE-2004-0200 | | 2004-09-28 | Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, allows remote attackers to execu… | |
CVE-1999-0681 | | 2001-03-12 | Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote attackers to cause a denial… | |
CVE-2000-0746 | | 2000-10-20 | Vulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attacks. They allow a malicious web site operator to embed scrip… | |
CVE-2000-0710 | | 2000-10-20 | The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path of the server components by re… | |
CVE-2000-0709 | | 2000-10-20 | The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in some components by requesting… | |
CVE-2000-0419 | | 2000-05-11 | The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activities via the "Show Me" functi… | |
CVE-2000-0413 | | 2000-05-06 | The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical path of HTML, HTM, ASP, and SHTM… | |
CVE-2000-0256 | | 2000-04-19 | Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that are not otherwise available t… | |
CVE-2000-0260 | | 2000-04-14 | Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute commands, aka the "Link View Server… | |
CVE-2000-0122 | | 2000-02-03 | Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the htimage.exe CGI program. | |
CVE-1999-1016 | | 1999-08-27 | Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and possibly others, allows remote m… |