CVE Vulnerabilities

CVE-2005-0049

Published: May 02, 2005 | Modified: Oct 12, 2018
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote attackers to inject arbitrary HTML and web script via a cross-site scripting (XSS) attack, or to spoof the web cache.

Affected Software

Name Vendor Start Version End Version
Sharepoint_portal_server Microsoft 2003 (including) 2003 (including)
Sharepoint_portal_server Microsoft 2003-sp1 (including) 2003-sp1 (including)
Sharepoint_team_services Microsoft * *

References