PT-2002-1234 · Microsoft · Internet Information Server

Publicado

2002-04-22

·

Atualizado

2020-11-23

·

CVE-2002-0148

CVSS v2.0

7.5

Alta

VetorAV:N/AC:L/Au:N/C:P/I:P/A:P
Name of the Vulnerable Software and Affected Versions Internet Information Server (IIS) versions 4.0 through 5.1
Description A cross-site scripting issue allows remote attackers to execute arbitrary script as other users via an HTTP error page.
Recommendations For IIS versions 4.0 through 5.1, update to a version that includes a fix for this issue to prevent exploitation.

Exploit

Correção

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Identificadores relacionados

CVE-2002-0148

Produtos afetados

Internet Information Server