Lucene search
HistoryMay 02, 2005 - 4:00 a.m.
CVE-2005-0049
windows
sharepoint
services
team
windows server 2003
http
redirection
query
validation
vulnerability
xss
attack
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.056 Low
EPSS
Percentile
93.3%
Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote attackers to inject arbitrary HTML and web script via a cross-site scripting (XSS) attack, or to spoof the web cache.
Related
securityvulns
securityvulns
Microsoft Security Bulletin MS05-006
2005-02-08 00:00:00
cvelist
cvelist
CVE-2005-0049
2005-02-08 05:00:00
cert
cert
5.8 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.056 Low
EPSS
Percentile
93.3%
Related for CVE-2005-0049