Users login

Create an account »

JOIN XATRIX

Users login

Home » Hacking News » A Possibility of Internet Information Server/Services Cross Site Scripting

A Possibility of Internet Information Server/Services Cross Site Scripting

by Nikola Strahija on April 11th, 2002 When a request is submitted to IIS, it returns a "302 Object Moved" error message to the client without changing the metacharacters contained in the request. This occurs when the request contains the following URI: GET /existing directory name?">alert("aaa");


Affected Versions:
------------------
Microsoft Internet Information Server 4.0
Microsoft Internet Information Services 5.0
Microsoft Internet Information Services 5.1

Solution:
---------
This vulnerability can be eliminated by applying the following patch
available at:

Microsoft Security Bulletin MS02-018:
http://www.microsoft.com/technet/security/bulletin/ms02-018.asp

Microsoft Security Bulletin MS02-018(Japanese version):
http://www.microsoft.com/japan/technet/security/bulletin/MS02-018.asp

Discovered by:
--------------
Keigo Yamazaki

Disclaimer:
-----------
All information in these advisories are subject to change without any
advanced notices neither mutual consensus, and each of them is released
as it is. LAC Co.,Ltd. is not responsible for any risks of occurrences
caused by applying those information.

References:
-----------
Archive of this advisory:
http://www.lac.co.jp/security/english/snsadv_e/49_e.html

------------------------------------------------------------------
Secure Net Service(SNS) Security Advisory
Computer Security Laboratory, LAC http://www.lac.co.jp/security/
-------------------------------------------------------------------



Newsletter signup

Signup to our monthly newsletter and stay in touch with IT news!

Free E-books

We've got ebooks! But they're not online. :( Please give us a few days to bring downloads back.

Contact

Have something to say or just wanna drop us a line? Please keep this in mind: to spam, we reply with spam.

Contact us »