PT-2001-1846 · Microsoft · Internet Security/Acceleration (Isa) Server 2000

Published

2001-09-20

Updated

2018-10-12

CVE-2001-0658

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions: Microsoft Internet Security and Acceleration (ISA) Server 2000

Description: A cross-site scripting issue allows remote attackers to cause other clients to execute certain script or read cookies via malicious script in an invalid URL that is not properly quoted in an error message.

Recommendations: For Microsoft Internet Security and Acceleration (ISA) Server 2000, at the moment, there is no information about a newer version that contains a fix for this vulnerability.

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2001-0658

Affected Products

Internet Security/Acceleration (Isa) Server 2000

PT-2001-1846 · Microsoft · Internet Security/Acceleration (Isa) Server 2000

CVE-2001-0658

Related Identifiers

Affected Products

References · 4