CVE-2006-4685

2006-10-10T18:07:00
ID CVE-2006-4685
Type cve
Reporter NVD
Modified 2018-10-17T17:39:04

Description

The XMLHTTP ActiveX control in Microsoft XML Parser 2.6 and XML Core Services 3.0 through 6.0 does not properly handle HTTP server-side redirects, which allows remote user-assisted attackers to access content from other domains.