Lucene search
Japan Vulnerability NotesJVN:52201480HistorySep 13, 2006 - 12:00 a.m.
JVN#52201480 Microsoft Windows Indexing Service cross-site scripting vulnerability
2006-09-1300:00:00
Japan Vulnerability Notes
jvn.jp
13
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.855 High
EPSS
Percentile
98.5%
Impact
If the Indexing Service in Internet Information Services (IIS) provides search capabilities, an arbitrary script could be executed on the user’s web browser.
Solution
Products Affected
- Windows 2000
- Windows XP
- Windows 2000 Server
- Windows Server 2003
Related
nessus
nessus
MS06-053: Vulnerability in Indexing Service Could Allow XSS (920685)
2006-09-12 00:00:00
cert
cert
Microsoft Indexing Services vulnerable to cross-site scripting
2006-09-12 00:00:00
cvelist
cvelist
CVE-2006-0032
2006-09-12 23:00:00
checkpoint_advisories
checkpoint_advisories
prion
prion
Cross site scripting
2006-09-12 23:07:00
securityvulns
securityvulns
cve
cve
CVE-2006-0032
2006-09-12 23:07:00
CVE-2006-5152
2006-10-05 04:04:00
4.3 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.855 High
EPSS
Percentile
98.5%
Related for JVN:52201480