Vulnerability in N/a
CVE-2007-3033
Cross-site scripting (XSS) vulnerability in Windows Vista Feed Headlines Gadget (aka Sidebar RSS Feeds Gadget) in Windows Vista allows user-assisted remote attackers to execute arbitrary code via an RSS feed with crafted HTML attributes, w…
EPSS: 0.585 (98.2th percentile) — read the EPSS interpretation.
Affected products
- N/a — versions n/a
References
- 26439 (x_refsource_SECUNIA, third-party-advisory)
- TA07-226A (x_refsource_CERT, third-party-advisory)
- 20070814 Microsoft Windows Vista Sidebar RSS Feeds Gadget Cross Site Scripting Vulnerability (x_refsource_IDEFENSE, third-party-advisory)
- oval:org.mitre.oval:def:2152 (x_refsource_OVAL, signature, vdb-entry)
- ADV-2007-2872 (vdb-entry, x_refsource_VUPEN)
- 1018566 (vdb-entry, x_refsource_SECTRACK)
- VU#558648 (x_refsource_CERT-VN, third-party-advisory)
- 25287 (vdb-entry, x_refsource_BID)
- MS07-048 (x_refsource_MS, vendor-advisory)