- Quick specs
- Price: Update
- Operating system: Windows 98/2000/XP
- Date added: December 19, 2000
- Total Downloads: 15
- Downloads last week: 1
- See full specifications
- Average user rating: Be the first to rate this product!
Publisher's description
From Microsoft :This update resolves the "Indexing Service File Enumeration" vulnerability in Indexing Service 3.0 and is discussed in Microsoft Security Bulletin MS00-098. Download now to prevent a malicious Web site operator from gathering information about your files and folders.
An ActiveX® control that is shipped with Indexing Service is incorrectly marked as "safe for scripting." The control makes it possible for Web applications and other programs to list the names of files and folders on a computer running Windows 2000. Because this control is marked "safe for scripting," a malicious Web site operator could use the control to gather the names and properties of files and folders on a visiting user's affected computer. Under very specific circumstances, if Indexing Service 3.0 is running on an affected computer, the malicious Web site operator might be able to search for files that contain specific words.
For more information about this vulnerability, read Microsoft Security Bulletin MS00-098.
More popular Operating Systems & Updates downloads
- 22,965 downloads 1. DriverMax
- 17,102 downloads 2. CNET TechTracker app
- 7,586 downloads 3. Microsoft Windows XP Home Edition
- 7,096 downloads 4. Windows XP Media Center Edition
- 7,052 downloads 5. Windows 7 USB/DVD Download Tool
- See all Operating Systems & Updates downloads
User reviews
Write your own review Be the first one to review Microsoft Windows 2000 Patch: Indexing Service File Enumeration Update and share your experience with the CNET community!
Submit your review
- See more CNET content tagged:
- Microsoft Corp.,
- Microsoft Windows,
- Microsoft Windows 2000,
- folder,
- operator
