ASP.NET crossite scripting protection bypass - security vulnerabilities database

[EN] securityvulns.ru
no-pyccku

ASP.NET crossite scripting protection bypass
Published: 09.09.2003
Source: BUGTRAQ
SecurityVulns ID: 3102
Type: remote
Level: 5/10
Description: It's possible to insert null character after tag opening.

Affected: MICROSOFT : ASP.Net 1.1

Original document WebCohort Research, Advisory: Incorrect Handling of XSS Protection in ASP.Net (09.09.2003)

Discuss: Read or add your comments to this news (0 comments)