2 matches found
CVE-2007-0939
CVE-2007-0939 is an XSS vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2. The issue arises from MCMS not fully validating input in HTML redirect queries, allowing remote attackers to inject script or HTML that runs in a user’s browser. Exploitation requires user i...
CVE-2007-0938
CVE-2007-0938 describes a remote code execution vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2, caused by improper handling of certain characters in crafted HTTP requests. The CMS Memory Corruption vulnerability could allow an attacker to take control of an affe...