5 results (0.011 seconds)

CVSS: 6.8EPSS: 14%CPEs: 2EXPL: 3

Cross-site scripting (XSS) vulnerability in _vti_bin/_vti_adm/fpadmdll.dll in Microsoft FrontPage Server Extensions 2002 and SharePoint Team Services allows remote attackers to inject arbitrary web script or HTML, then leverage the attack to execute arbitrary programs or create new accounts, via the (1) operation, (2) command, and (3) name parameters. • https://www.exploit-db.com/exploits/27620 http://secunia.com/advisories/19623 http://securityreason.com/securityalert/704 http://securitytracker.com/id?1015895 http://securitytracker.com/id?1015896 http://www.argeniss.com/research/ARGENISS-ADV-040602.txt http://www.securityfocus.com/archive/1/430803/100/0/threaded http://www.securityfocus.com/bid/17452 http://www.vupen.com/english/advisories/2006/1322 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2006/ms06-017 •

CVSS: 7.5EPSS: 97%CPEs: 8EXPL: 2

Buffer overflow in the debug functionality in fp30reg.dll of Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to execute arbitrary code via a crafted chunked encoded request. Desbordamiento de búfer en la funcionalidad de depuración en fp30reg.dll de Microsoft FrontPage Server Extensions 2000 y 2002 permite a atacantes remotos ejecutar código mediante una cierta petición en trozos codificada. • https://www.exploit-db.com/exploits/121 https://www.exploit-db.com/exploits/16356 http://marc.info/?l=bugtraq&m=106865318904055&w=2 http://marc.info/?l=ntbugtraq&m=106862654906759&w=2 http://secunia.com/advisories/10195 http://www.kb.cert.org/vuls/id/279156 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-051 https://exchange.xforce.ibmcloud.com/vulnerabilities/13674 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3A •

CVSS: 5.0EPSS: 41%CPEs: 8EXPL: 0

Unknown vulnerability in the SmartHTML interpreter (shtml.dll) in Microsoft FrontPage Server Extensions 2000 and 2002, and Microsoft SharePoint Team Services 2002, allows remote attackers to cause a denial of service (response failure) via a certain request. Vulnerabilidad desconocida en el intérprete SmartHTML interpreter (shtml.dll) en Microsoft FrontPage Server Extensions 2000 y 2002, y Microsoft SharePoint Team Services 2002, permite a atacantes remotos causar una denegación de servicio (fallo de respuesta) mediante una cierta petición. • http://secunia.com/advisories/10195 http://www.kb.cert.org/vuls/id/179012 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-051 https://exchange.xforce.ibmcloud.com/vulnerabilities/13680 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A308 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A591 https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A606 https://oval.cis •

CVSS: 7.5EPSS: 2%CPEs: 9EXPL: 0

Buffer overflow in SmartHTML Interpreter (shtml.dll) in Microsoft FrontPage Server Extensions (FPSE) 2000 and 2002 allows remote attackers to cause a denial of service (CPU consumption) or run arbitrary code, respectively, via a certain type of web file request. Desbordamiento de búfer en Intérprete SmartHTML (shtml.dll) en Microsoft FrontPage Server Extensions (FPSE) 2000 y 2002 permite a atacantes remotos causar una denegación de servicio (consumición de CPU) o ejecutar código arbitrario, mediante cierto tipo de petición de fichero web. • http://www.iss.net/security_center/static/10194.php http://www.iss.net/security_center/static/10195.php http://www.kb.cert.org/vuls/id/723537 http://www.securityfocus.com/bid/5804 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-053 •

CVSS: 7.5EPSS: 3%CPEs: 35EXPL: 3

Buffer overflow in Microsoft Visual Studio RAD Support sub-component of FrontPage Server Extensions allows remote attackers to execute arbitrary commands via a long registration request (URL) to fp30reg.dll. El desbordamiento de búfer en el subcomponente Microsoft Visual Studio RAD Support de FrontPage Server Extensions permite a los atacantes remotos ejecutar comandos arbitrarios a través de una solicitud de registro larga (URL) a fp30reg.dll. • https://www.exploit-db.com/exploits/20950 https://www.exploit-db.com/exploits/20951 http://marc.info/?l=bugtraq&m=99348216322147&w=2 http://www.osvdb.org/577 http://www.securityfocus.com/bid/2906 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2001/ms01-035 https://exchange.xforce.ibmcloud.com/vulnerabilities/6730 •