Microsoft IIS FrontPage Server Extensions (FPSE) shtml.exe Path Disclosure

Medium Nessus Plugin ID 10405


The remote web server has an information disclosure vulnerability.


The version of FrontPage Extensions running on the remote host has an information disclosure vulnerability. Using a non-existent file as an argument to the 'shtml.exe' CGI reveals the local absolute path of the web root. A remote attacker could use this information to mount further attacks.


Upgrade to FrontPage Server Extensions SR1.2 or later.

See Also

Plugin Details

Severity: Medium

ID: 10405

File Name: frontpage_shtml.nasl

Version: $Revision: 1.31 $

Type: remote

Family: Web Servers

Published: 2000/05/10

Modified: 2016/11/19

Dependencies: 10107, 11919, 17975

Risk Information

Risk Factor: Medium


Base Score: 5

Temporal Score: 4.3

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:N/A:N

Temporal Vector: CVSS2#E:H/RL:OF/RC:C

Vulnerability Information

Vulnerability Publication Date: 2000/05/06

Reference Information

CVE: CVE-2000-0413

BID: 1174

OSVDB: 28260