CVE-2010-2084

Microsoft ASP.NET 2.0 does not prevent setting the InnerHtml property on a control that inherits from HtmlContainerControl, which allows remote attackers to conduct cross-site scripting XSS attacks via vectors related to an attribute...

Microsoft ASP.NET Cross-Site Scripting vulnerability

Microsoft ASP .NET is prone to a cross-site scripting XSS vulnerability. SPDX-FileCopyrightText: 2010 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Microsoft ASP.NET 2.0 InnerHtml属性远程跨站脚本漏洞

CVE ID: CVE-2010-2084 ASP.NET是一套由Microsoft分发的帮助开发者构建基于WEB应用的系统。 大多数ASP.NET控件都是从HtmlContainerControl继承的，而ASP.NET 2.0没有禁止对其设置InnerHtml属性，这可能导致跨站脚本攻击。 Microsoft ASP.NET 2.0 厂商补丁： Microsoft --------- 目前厂商还没有提供补丁或者升级程序，我们建议使用此软件的用户随时关注厂商的主页以获取最新版本： http://www.microsoft.com/technet/security/...