Skip to content
Saturday, December 6, 2025
Medium Published: Sep 14, 2001 Modified: Apr 03, 2025

CVE-2001-0986

5 CVSS SCORE
Vector: AV:N/AC:L/Au:N/C:P/I:N/A:N
Share:

Description

SQLQHit.asp sample file in Microsoft Index Server 2.0 allows remote attackers to obtain sensitive information such as the physical path, file attributes, or portions of source code by directly calling sqlqhit.asp with a CiScope parameter set to (1) webinfo, (2) extended_fileinfo, (3) extended_webinfo, or (4) fileinfo.

CVSS Vector Details

Attack Vector Network
Attack Complexity Low
Confidentiality P
Integrity None
Availability None

Affected Software Configurations

  • a microsoft index_server 2.0 * * * * * * *

Weaknesses (CWE)

  • NVD-CWE-Other

References & External Links

External Resources

NVD Official Record Exploit-DB Search Exploits CVE Details Statistics GitHub PoC / Tools X / Twitter Discussions Google Search More
← Back to CVE Tracker