Microsoft ISA Server Error Page Cross-Site Scripting Vulnerability

Bugtraq ID: 7623
Class: Input Validation Error
CVE:
Remote: Yes
Local: No
Published: May 17 2003 12:00AM
Updated: May 17 2003 12:00AM
Credit: Discovery of this vulnerability credited to Hugo "Vázquez" "Caramés" <overclocking_a_la_abuela@hotmail.com>.
Vulnerable: Microsoft ISA Server 2000 SP1
+ Microsoft Small Business Server 2000 0
 + Microsoft Small Business Server 2003 Premium Edition
- Microsoft Windows 2000 Advanced Server SP2
 - Microsoft Windows 2000 Advanced Server SP1
 - Microsoft Windows 2000 Datacenter Server SP2
 - Microsoft Windows 2000 Datacenter Server SP1
 - Microsoft Windows 2000 Server SP2
 - Microsoft Windows 2000 Server SP1
 Microsoft ISA Server 2000 FP1
Microsoft ISA Server 2000
+ Microsoft Small Business Server 2000 0
 + Microsoft Small Business Server 2003 Premium Edition
- Microsoft Windows 2000 Advanced Server
- Microsoft Windows 2000 Server
Not Vulnerable:


 

Privacy Statement
Copyright 2010, SecurityFocus