Computer Security
[EN] securityvulns.ru no-pyccku


Microsoft Report Viewer crossite scripting
updated since 10.08.2011
Published:30.08.2011
Source:
SecurityVulns ID:11844
Type:client
Threat Level:
5/10
Description:ActiveX crossite scripting.
Affected:MICROSOFT : Visual Studio 2005
 MICROSOFT : Report Viewer 2005
CVE:CVE-2011-1976 (Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote attackers to inject arbitrary web script or HTML via a parameter in a data source, aka "Report Viewer Controls XSS Vulnerability.")
Original documentdocumentinfo_(at)_gdssecurity.com, Cross-Site Scripting (XSS) in Microsoft ReportViewer Controls (30.08.2011)
Files:Microsoft Security Bulletin MS11-067 - Important Vulnerability in Microsoft Report Viewer Could Allow Information Disclosure (2578230)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod