Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Cross-site scripting (XSS) vulnerability in uddi/search/frames.aspx in the UDDI Services component in Microsoft Windows Server 2008 SP2 and BizTalk Server 2010, 2013 Gold, and 2013 R2 allows remote attackers to inject arbitrary web script or HTML via the search parameter, aka "UDDI Services Elevation of Privilege Vulnerability."
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Microsoft Windows UDDI Server 跨站脚本漏洞
Vulnerability Description
Microsoft Windows是美国微软(Microsoft)公司发布的一系列操作系统。UDDI Server是其中的一个通用说明、发现和集成服务。 Microsoft Windows的通用说明、发现和集成(UDDI)服务中存在跨站脚本漏洞,该漏洞源于程序未正确验证或清理FRAME标记内的搜索参数。攻击者可通过将恶意脚本插入网页搜索参数利用该漏洞泄露授权cookie或将用户意外地重定向至恶意网页。
CVSS Information
N/A
Vulnerability Type
N/A