2 matches found
MS07-018: Vulnerabilities in Microsoft Content Management Server Could Allow Remote Code Execution (925939)
The remote host contains a version of the Microsoft Content Management Server that is vulnerable to a security flaw that could allow a remote user to execute arbitrary code by sending a specially malformed HTTP request. C Tenable Network Security, Inc. include"compat.inc"; if description...
CVE-2007-0939
CVE-2007-0939 is an XSS vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2. The issue arises from MCMS not fully validating input in HTML redirect queries, allowing remote attackers to inject script or HTML that runs in a user’s browser. Exploitation requires user i...