CVE-2000-0097

Microsoft Index Server - Info Disclosure

Title source: llm

Description

The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability.

Exploits (1)

exploitdb WORKING POC VERIFIED

by fredrik.widlund · cremotewindows

https://www.exploit-db.com/exploits/19731

View Code ZIP pw:eip

References (3)

[Vendor Advisory] https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006

[Third Party Advisory, VDB Entry] http://www.securityfocus.com/bid/950

[Third Party Advisory, VDB Entry] http://www.osvdb.org/1210

Scores

EPSS 0.6087

EPSS Percentile 98.3%

Details

Status published

Products (1)

microsoft/index_server 2.0

Published Jan 26, 2000

Tracked Since Feb 18, 2026