2 matches found
Microsoft Security Bulletin MS06-056
A cross-site scripting vulnerability exists in a server running a vulnerable version of the .Net Framework 2.0 that could inject a client side script in the user's browser. The script could spoof content, disclose information, or take any action that the user could take on the affected web site...
CVE-2006-3436
CVE-2006-3436 is a Microsoft .NET Framework 2.0 ASP.NET XSS vulnerability. The flaw affects ASP.NET controls that set AutoPostBack to true, allowing an attacker to inject client-side script via HTTP requests and potentially cause information disclosure or browser-side actions. Exploitation report...