← back
CVE-2002-2062

CVE-2002-2062

EPSS 12.2%
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.
Affected products
n/a · n/a
public PoCs found1
exploitdbwww.exploit-db.com/exploits/21515unverified
⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://archives.neohapsis.com/archives/bugtraq/2002-06/0037.htmlhttp://www.geocities.co.jp/SiliconValley/1667/advisory02e.htmlhttp://www.iss.net/security_center/static/9290.phphttp://www.securityfocus.com/bid/4954