Zurück zur CVE-Übersicht
CVE-2002-2062
MEDIUM(4.3)AV:N/AC:M/Au:N/C:N/I:P/A:N
Risk Signal Score14/100 — NIEDRIG
- CVSS 4.3 — Mittel
EPSS-Score
12%
Exploit-Wahrscheinlichkeit (30 Tage)
CVSS Score
4.3
Technische Schwere
Beschreibung
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.
Referenzen
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0037.html
- http://www.geocities.co.jp/SiliconValley/1667/advisory02e.html
- http://www.iss.net/security_center/static/9290.php
- http://www.securityfocus.com/bid/4954
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0037.html
- http://www.geocities.co.jp/SiliconValley/1667/advisory02e.html
- http://www.iss.net/security_center/static/9290.php
- http://www.securityfocus.com/bid/4954