.. / CVE-2000-0114

Exploit for Microsoft FrontPage Extensions Check (shtml.dll) - Unauthenticated Information Disclosure (CVE-2000-0114)

Description:

Frontpage Server Extensions allows remote attackers to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory.

Affected Products:

Microsoft Internet Information Server 3.0

Proof of Concept

PoC exploits

https://www.exploit-db.com/exploits/19897

Nuclei Template

View the template here CVE-2000-0114.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2000/CVE-2000-0114.yaml

References:

https://nvd.nist.gov/vuln/detail/CVE-2000-0114
https://www.exploit-db.com/exploits/19897
https://exchange.xforce.ibmcloud.com/vulnerabilities/CVE-2000-0114
https://github.com/0xPugazh/One-Liners
https://github.com/ARPSyndicate/kenzer-templates

.. / CVE-2000-0114 if(localStorage["style"]=="true"){ document.getElementById('pagestyle').setAttribute('href','/assets/styleDark.css'); document.querySelector('input[type="checkbox"]').checked = true }