Microsoft · Content Management Server · CVE-2003-0002
**Name of the Vulnerable Software and Affected Versions**
Microsoft Content Management Server (MCMS) 2001
**Description**
A cross-site scripting issue exists, allowing remote attackers to execute arbitrary script code. This is achieved via the `REASONTXT` parameter in the ManualLogin.asp script.
**Recommendations**
For Microsoft Content Management Server (MCMS) 2001, avoid using the `REASONTXT` parameter in the ManualLogin.asp script until the issue is resolved. As a temporary workaround, consider restricting access to the ManualLogin.asp script to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.