Microsoft IIS Server XSS Elevation of Privilege Vulnerability

Microsoft IIS Server XSS Elevation of Privilege Vulnerability

CVE-2017-0055 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote attackers to perform cross-site scripting and run script with local user privileges via a crafted request, aka "Microsoft IIS Server XSS Elevation of Privilege Vulnerability."

Learn more about our Cis Benchmark Audit For Microsoft Iis.