Arbitrary Script Execution via Cross-Site Scripting in IIS 4.0, 5.0, and 5.1

Arbitrary Script Execution via Cross-Site Scripting in IIS 4.0, 5.0, and 5.1

CVE-2002-0148 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Cross-site scripting vulnerability in Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to execute arbitrary script as other users via an HTTP error page.

Learn more about our Cis Benchmark Audit For Microsoft Iis.