Vulnerability in Microsoft Frontpage
CVE-2000-0746
Vulnerabilities in IIS 4.0 and 5.0 do not properly protect against cross-site scripting (CSS) attacks. They allow a malicious web site operator to embed scripts in a link to a trusted site, which are returned without quoting in an error m…
EPSS: 0.086 (94.4th percentile) — read the EPSS interpretation.
Affected products
- Microsoft Frontpage
- Microsoft Internet_information_server — versions 4.0
- Microsoft Internet_information_services — versions 5.0
- N/a — versions n/a
References
- cve@mitre.org (mailing-list, x_refsource_BUGTRAQ)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (Patch, vdb-entry, x_refsource_BID, Vendor Advisory)
- cve@mitre.org (x_refsource_MS, vendor-advisory)