Published: 31/12/2002 Updated: 23/07/2021

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote malicious users to inject arbitrary web script or HTML via the hostname portion of an FTP URL.

Vulnerable Product	Search on Vulmon	Subscribe to Product
microsoft internet explorer 6.0
microsoft internet explorer 5.5

source: wwwsecurityfocuscom/bid/4954/info A cross site scripting issue has been reported with some versions of Microsoft Internet Explorer for Windows Under some configurations, data included within a FTP URL will be rendered as displayed content, allowing the execution of arbitrary JavaScript code within the Local Computer context If ...

NVD-CWE-Other http://archives.neohapsis.com/archives/bugtraq/2002-06/0037.html http://www.geocities.co.jp/SiliconValley/1667/advisory02e.html http://www.securityfocus.com/bid/4954 http://www.iss.net/security_center/static/9290.php https://nvd.nist.gov https://www.exploit-db.com/exploits/21515/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-2062

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect