CVE-2013-3137

all versions

Microsoft FrontPage 2003 SP3 does not properly parse DTDs, which allows remote attackers to obtain sensitive information via craft

CVE-2008-3068

all versions

Microsoft Crypto API 5.131.2600.2180 through 6.0, as used in Outlook, Windows Live Mail, and Office 2007, performs Certificate Rev

CVE-2007-3109

all versions

The CERN Image Map Dispatcher (htimage.exe) in Microsoft FrontPage allows remote attackers to determine the existence, and possibl

CVE-2007-0671

all versions

Unspecified vulnerability in Microsoft Excel 2000, XP, 2003, and 2004 for Mac, and possibly other Office products, allows remote u

8.8HIGH

CVE-2006-3877

all versions

Unspecified vulnerability in PowerPoint in Microsoft Office 2000, Office 2002, Office 2003, Office 2004 for Mac, and Office v.X fo

CVE-2005-2143

all versions

Microsoft Front Page allows attackers to cause a denial of service (crash) via a crafted style tag in a web page.

CVE-2004-2179

all versions

asycpict.dll, as used in Microsoft products such as Front Page 97 and 98, allows remote attackers to cause a denial of service (ha

CVE-2004-0573

all versions

Buffer overflow in the converter for Microsoft WordPerfect 5.x on Office 2000, Office XP, Office 2003, and Works Suites 2001 throu

CVE-2004-0200

all versions

Buffer overflow in the JPEG (JPG) parsing engine in the Microsoft Graphic Device Interface Plus (GDI+) component, GDIPlus.dll, all

CVE-1999-0681

all versions

Buffer overflow in Microsoft FrontPage Server Extensions (PWS) 3.0.2.926 on Windows 95, and possibly other versions, allows remote

CVE-2000-0746

all versions

Vulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attacks. They allow a malicious web

CVE-2000-0710

all versions

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to determine the physical path o

CVE-2000-0709

all versions

The shtml.exe component of Microsoft FrontPage 2000 Server Extensions 1.1 allows remote attackers to cause a denial of service in

CVE-2000-0419

all versions

The Office 2000 UA ActiveX Control is marked as "safe for scripting," which allows remote attackers to conduct unauthorized activi

CVE-2000-0413

all versions

The shtml.exe program in the FrontPage extensions package of IIS 4.0 and 5.0 allows remote attackers to determine the physical pat

CVE-2000-0256

all versions

Buffer overflows in htimage.exe and Imagemap.exe in FrontPage 97 and 98 Server Extensions allow a user to conduct activities that

CVE-2000-0260

all versions

Buffer overflow in the dvwssr.dll DLL in Microsoft Visual Interdev 1.0 allows users to cause a denial of service or execute comman

CVE-2000-0122

all versions

Frontpage Server Extensions allows remote attackers to determine the physical path of a virtual directory via a GET request to the

CVE-1999-1016

all versions

Microsoft HTML control as used in (1) Internet Explorer 5.0, (2) FrontPage Express, (3) Outlook Express 5, and (4) Eudora, and pos

CVE-1999-1052

all versions

Microsoft FrontPage stores form results in a default location in /_private/form_results.txt, which is world-readable and accessibl

CVE-2000-0153

all versions

FrontPage Personal Web Server (PWS) allows remote attackers to read files via a .... (dot dot) attack.

CVE-1999-0386

all versions

Microsoft Personal Web Server and FrontPage Personal Web Server in some Windows systems allows a remote attacker to read files on

CVE-1999-0012

all versions

Some web servers under Microsoft Windows allow remote attackers to bypass access restrictions for files with long file names.

7.0HIGH