CVE-2002-2062: XSS
First published: Tue Dec 31 2002(Updated: )
Cross-site scripting (XSS) vulnerability in ftp.htt in Internet Explorer 5.5 and 6.0, when running on Windows 2000 with "Enable folder view for FTP sites" and "Enable Web content in folders" selected, allows remote attackers to inject arbitrary web script or HTML via the hostname portion of an FTP URL.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microsoft Internet Explorer | =5.5-sp2 | |
| Microsoft Internet Explorer | =5.5 | |
| Microsoft Internet Explorer | =5.5-sp1 | |
| Microsoft Internet Explorer | =6.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/author
- agent/severity
- agent/references
- agent/weakness
- agent/type
- agent/event
- agent/description
- agent/first-publish-date
- agent/last-modified-date
- agent/softwarecombine
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/microsoft
- canonical/microsoft internet explorer
- version/microsoft internet explorer/5.5-sp2
- version/microsoft internet explorer/5.5
- version/microsoft internet explorer/5.5-sp1
- version/microsoft internet explorer/6.0