ASP/ASA Source Using Microsoft Translate F: Bug Network Vulnerability

Summary

There is a serious vulnerability in Windows 2000 (unpatched by SP1) that allows an attacker to view ASP/ASA source code instead of a processed file. ASP source code can contain sensitive information such as username's and passwords for ODBC connections.

Solution

install all the latest Microsoft Security Patches (Note: This vulnerability is eliminated by installing Windows 2000 Service Pack 1)

Severity

Classification

CVE CVE-2000-0778
CVSS Base Score: 5.0
AV:N/AC:L/Au:N/C:P/I:N/A:N

Related Vulnerabilities

Apache ActiveMQ Source Code Information Disclosure Vulnerability
Apache Commons Daemon 'jsvc' Information Disclosure Vulnerability
Apache Tiles Multiple XSS Vulnerability
Apache Struts2 showcase namespace XSS Vulnerability
Apache Tomcat TroubleShooter Servlet Installed

ASP/ASA source using Microsoft Translate f: bug

Take action and discover your vulnerabilities