VDB
CERTCC-2002-886699
CERTCC-2002-886699
PUBLISHED
Visitors to web sites that use Microsoft IIS and also use the default error pages are vulnerable to cross-site scripting attacks.
Timeline
- Apr 10, 2002 CVE Published
- Feb 23, 2004 CVE Updated
- Mar 17, 2026 Security Advisory
References
- Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results url
- Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results advisory
- Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in HTTP error page results advisory