CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0246

IIS 4.0 and 5.0 does not properly perform ISAPI extension processing if a virtual directory is mapped to a UNC share, which allows remote attackers to read the source code of ASP and other files, aka the "Virtualized UNC Share" vulnerability.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.836

EPSS Ranking 99.2%

CVSS Severity

CVSS v2 Score 5.0

References

Products affected by CVE-2000-0246

Microsoft » Commercial Internet System » Version: 2.0

cpe:2.3:a:microsoft:commercial_internet_system:2.0
Microsoft » Commercial Internet System » Version: 2.5

cpe:2.3:a:microsoft:commercial_internet_system:2.5
Microsoft » Internet Information Server » Version: 4.0

cpe:2.3:a:microsoft:internet_information_server:4.0
Microsoft » Internet Information Services » Version: 5.0

cpe:2.3:a:microsoft:internet_information_services:5.0
Microsoft » Proxy Server » Version: 2.0

cpe:2.3:a:microsoft:proxy_server:2.0
Microsoft » Site Server » Version: 3.0

cpe:2.3:a:microsoft:site_server:3.0
Microsoft » Site Server Commerce » Version: 3.0

cpe:2.3:a:microsoft:site_server_commerce:3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2000-0246

Products

Pricing

Contact Us