CVE-2000-1104

Name of the Vulnerable Software and Affected Versions IIS (affected versions not specified)

Description A variant of the IIS Cross-Site Scripting issue allows a malicious web site operator to embed scripts in a link to a trusted site. These scripts are returned without quoting in an error message back to the client, which then executes them in the same context as the trusted site.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.