CVE-1999-0386

Microsoft Personal Web Server - Info Disclosure

Title source: llm

Description

Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on the server by using a nonstandard URL.

Exploits (1)

exploitdb WRITEUP VERIFIED

by kiborg · textremotewindows

https://www.exploit-db.com/exploits/19753

View Code ZIP pw:eip

References (2)

Core 2

Core References

Third Party Advisory, VDB Entry vdb-entry x_refsource_osvdb

http://www.osvdb.org/111

Vendor Advisory vendor-advisory x_refsource_ms

https://docs.microsoft.com/en-us/security-updates/securitybulletins/1999/ms99-010

Scores

EPSS 0.6121

EPSS Percentile 98.3%

Details

Status published

Products (2)

microsoft/frontpage

microsoft/personal_web_server 4.0

Published Mar 01, 1999

Tracked Since Feb 18, 2026