Microsoft Indexing Service crossite scripting
news
/
advisories
/
forum
/
software
/
advertising
/
search
/
exploits
[EN]
securityvulns.ru
no-pyccku
Microsoft Indexing Service crossite scripting
updated since 12.09.2006
Published:
02.10.2006
Source:
MICROSOFT
SecurityVulns ID:
6604
Type:
remote
Level:
5
/10
Description:
Crossite scripting with UTF-7 characters in URL is possible.
Affected:
MICROSOFT
:
Windows 2000 Server
MICROSOFT
:
Windows 2000 Professional
MICROSOFT
:
Internet Explorer 6.0
MICROSOFT
:
Windows XP
MICROSOFT
:
Windows 2003 Server
Original document
Paul Szabo
,
[Full-disclosure] IE UXSS (Universal XSS in IE, was Re: Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053])
(
02.10.2006
)
Eiji James Yoshida
,
[Full-disclosure] Microsoft Internet Information Services UTF-7 XSS Vulnerability [MS06-053]
(
02.10.2006
)
MICROSOFT
,
Microsoft Security Bulletin MS06-053 Vulnerability in Indexing Service Could Allow Cross-Site Scripting (920685)
(
12.09.2006
)
Files:
Microsoft Security Bulletin MS06-053 Vulnerability in Indexing Service Could Allow Cross-Site Scripting (920685)
Discuss:
Read or add your comments to this news (0 comments)
About
|
Terms of use
|
Privacy Policy
©
SecurityVulns
,
3APA3A
, Vladimir Dubrovin
Nizhny Novgorod
Enter your search terms
Web
securityvulns.com
Submit search form
test server
