2 matches found
CVE-2003-0446
The CVE-2003-0446 entry concerns Cross-site Scripting (XSS) in Internet Explorer 5.5 and 6.0, potentially in a shared component used by other Microsoft products. The vulnerability arises when processing an XML file that contains a parse error, which allows remote attackers to inject arbitrary web...
CVE-2003-0446
Cross-site scripting XSS in Internet Explorer 5.5 and 6.0, possibly in a component that is also used by other Microsoft products, allows remote attackers to insert arbitrary web script via an XML file that contains a parse error, which inserts the script in the resulting error message...