CVE-2003-0768

Name of the Vulnerable Software and Affected Versions: Microsoft ASP.Net version 1.1

Description: The issue allows remote attackers to bypass the Cross-Site Scripting (XSS) and Script Injection protection feature. This is achieved by including a null character at the beginning of a tag name.

Recommendations: For Microsoft ASP.Net version 1.1, consider implementing input validation to restrict the use of null characters at the beginning of tag names as a temporary workaround until a patch is available.