New Search

DEPRECATED: Windows 2000 IIS HTTP Redirect Error Message Cross-site Scripting

oval:org.mitre.oval:def:210

Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.

Family:
windows
Status:
DEPRECATED
Platform(s):
  • Microsoft Windows 2000
Class:
vulnerability
Reference(s):
  • CVE-2002-0075
Product(s):
  • Microsoft Internet Information Server (IIS)