CVE Vulnerabilities

CVE-2005-0509

Published: Mar 14, 2005 | Modified: Oct 18, 2016
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
4.3 MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
RedHat/V2
RedHat/V3
Ubuntu

Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, including > and <.

Affected Software

Name Vendor Start Version End Version
.net_framework Microsoft 1.1 1.1
.net_framework Microsoft 1.0 1.0
.net_framework Microsoft 1.0 1.0
.net_framework Microsoft 1.1 1.1
Mono Mono 1.0.5 1.0.5
.net_framework Microsoft 1.0 1.0

References