Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2000-0630

EPSS 75.96% · P99
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2000-0630

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
IIS 4.0 and 5.0 allows remote attackers to obtain fragments of source code by appending a +.htr to the URL, a variant of the "File Fragment Reading via .HTR" vulnerability.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Microsoft IIS ISM.DLL文件名截断泄漏文件内容漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
IIS是Microsoft的一个产品,是用来在网站上提供HTTP、FTP等的服务器程序。运行在Windows NT和Windows 2000操作系统上。 NSFocus 安全小组发现了微软 IIS 4.0/5.0的一个安全漏洞。攻击者可以利用这个漏洞来获取某些特定类型文件(例如:.ASP,.ASA,.INI等等文本类型文件以及二进制文件)的全部或者部分内容。而正常情况下,攻击者是不应该有权限访问这些文件或者浏览文件内容的。 攻击者会构造一个特殊格式的URL请求,它由一个目标文件名再加上"+"号以及".ht
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Shenlong Deep Dive — AI Deep Analysis

10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.

Read summary Full analysis (login)

Affected Products

VendorProductAffected VersionsCPESubscribe
-n/a n/a -

II. Public POCs for CVE-2000-0630

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2000-0630

Please Login to view more intelligence information

Same Patch Batch · n/a · 2000-10-13 · 261 CVEs total

CVE-2000-0613Cisco Secure PIX防火墙伪造TCP RST漏洞
CVE-2000-0586Dalnet IRC Server "SUMMON"缓冲区溢出漏洞
CVE-2000-0587glftpd privpath指令漏洞
CVE-2000-0588Flowerfire Sawmill文件访问漏洞
CVE-2000-0591Novell BorderManager URL规则限制绕过漏洞
CVE-2000-0594BitchX IRC客户端"/INVITE"格式字符串漏洞
CVE-2000-0595libedit任意命令执行漏洞
CVE-2000-0596Microsoft Internet Explorer 安全漏洞
CVE-2000-0597Microsoft Internet Explorer 5.01 和Excel/Powerpoint 2000 ActiveX 对象执行漏洞
CVE-2000-0598Fortech Proxy+远程登录网关漏洞
CVE-2000-0599iMesh.Com iMesh 1.02缓冲区溢出漏洞
CVE-2000-0601LeafDigital LeafChat 1.7 DoS漏洞
CVE-2000-0602Secure Locate LOCATE_PATH认证漏洞
CVE-2000-0603Microsoft SQL Server 许可绕过漏洞
CVE-2000-0604Red Hat Linux gkermit文件修改漏洞
CVE-2000-0610NetWin dMailWeb and cwMail认证漏洞
CVE-2000-0611NetWin dMailWeb和 cwMai拒绝服务漏洞
CVE-2000-0635MiniVend shopping cart任意命令执行漏洞
CVE-2000-0636HP JetDirect打印机服务拒绝漏洞
CVE-2000-0637Microsoft Excel 97 / 2000 Register.ID漏洞

Showing top 20 of 261 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a
Same vendor: n/a

V. Comments for CVE-2000-0630

No comments yet

Leave a comment