Cross-site Scripting in Redirect Response messageID: oval:org.mitre.oval:def:12346 | Date: (C)2010-07-16 (M)2022-10-10 |
Class: VULNERABILITY | Family: windows |
Cross-site scripting vulnerability for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other web users via the error message used in a URL redirect (""302 Object Moved") message.
Platform: |
Microsoft Windows 2000 |
Microsoft Windows NT |
Microsoft Windows XP |
Product: |
Microsoft Internet Information Server (IIS) |