← voltar
CVE-2004-1133

CVE-2004-1133

EPSS 9.8%
Multiple cross-site scripting (XSS) vulnerabilities in Microsoft W3Who ISAPI (w3who.dll) allow remote attackers to inject arbitrary HTML and web script via (1) HTTP headers such as "Connection" or (2) invalid parameters whose values are echoed in the resulting error message.
Produtos afetados
n/a · n/a

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →
Referências
http://marc.info/?l=full-disclosure&m=110234486823233&w=2https://exchange.xforce.ibmcloud.com/vulnerabilities/18375http://www.exaprobe.com/labs/advisories/esa-2004-1206.html