Weblord.it MS-TopSites Unauthorized Access Vulnerability and HTML Injection Vulnerability

MS-TopSites is prone to an unauthorized-access vulnerability and an HTML-injection vulnerability because the application fails to sufficiently sanitize user-supplied data.

An attacker can exploit these issues to gain elevated privileges on the affected application, execute arbitrary code within the context of the webserver, and steal cookie-based authentication credentials.


 

Privacy Statement
Copyright 2010, SecurityFocus