Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting vulnerability (XSS) in the ASP function responsible for redirection in Microsoft Internet Information Server (IIS) 4.0, 5.0, and 5.1 allows remote attackers to embed a URL containing script in a redirection message.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Internet Information Services 安全漏洞
Vulnerability Description
Microsoft Internet Information Services(IIS)是美国微软(Microsoft)公司的一款适用于Windows Server平台的Web服务器。 Microsoft IIS在处理重定向错误页面时存在安全问题,远程攻击者可以利用这个漏洞构建恶意页面,诱使用户访问,获得用户基于认证的敏感信息。此攻击影响IIS 4.0,5.0和5.1,IIS在处理错误信息传递给通告用户请求URL将被重定向时,对响应的信息没有进行充分过滤。攻击者可以诱骗用户点击恶意页面,此页面包含恶意脚本
CVSS Information
N/A
Vulnerability Type
N/A