Back

CVE-2000-0097

The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary files, aka the "Malformed Hit-Highlighting Argument" vulnerability.

Published: Jan 26, 2000 Modified: Apr 16, 2026

CVSS Metrics

Affected Products (1)

Vendor	Product	Version
microsoft	index_server	2.0

GitHub Security Advisory GHSA-726j-722q-69g3

The WebHits ISAPI filter in Microsoft Index Server allows remote attackers to read arbitrary...

References (6)

http://www.osvdb.org/1210
http://www.securityfocus.com/bid/950
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006
http://www.osvdb.org/1210
http://www.securityfocus.com/bid/950
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2000/ms00-006

Risk Scores

CVSS Score 5.0 / 10

EPSS Score 60.87%

Top 2% most likely to be exploited

Threat Score 38.3 / 100

Data Sources

NVD EPSS GitHub