3 matches found
CVE-2003-0009
Cross-site scripting XSS vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter...
CVE-2003-0009
CVE-2003-0009 is an XSS vulnerability in the Help and Support Center (HSC) of Windows Me (and XP) where hcp:// URIs pass arbitrary script in the topic parameter. The CERT/CC entry and CERT/CC notes explain that HSC does not adequately validate hcp:// URI parameters, allowing an attacker to cause ...
CVE-2003-0009
Cross-site scripting XSS vulnerability in Help and Support Center for Microsoft Windows Me allows remote attackers to execute arbitrary script in the Local Computer security context via an hcp:// URL with the malicious script in the topic parameter...