CVE-2006-4685

2006-10-10T22:07:00
ID CVE-2006-4685
Type cve
Reporter cve@mitre.org
Modified 2018-10-17T21:39:00

Description

The XMLHTTP ActiveX control in Microsoft XML Parser 2.6 and XML Core Services 3.0 through 6.0 does not properly handle HTTP server-side redirects, which allows remote user-assisted attackers to access content from other domains.