The CiWebHitsFile component in Microsoft Indexing Services for Windows 2000 allows remote malicious users to conduct a cross site scripting (CSS) attack via a CiRestriction parameter in a .htw request, aka the "Indexing Services Cross Site Scripting" vulnerability.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
microsoft indexing service |