Phase:Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
ReferencesBUGTRAQ:Friday, October 11, 2002 [SNS Advisory No.56] TSAC Web package/IIS 5.1 connect.asp Cross-site Scripting Vulnerability | URL:http://online.securityfocus.com/archive/1/294938 | MISC:http://www.lac.co.jp/security/english/snsadv_e/56_e.html | BID:5952 |
Votes:Assigned (Wednesday, June 29, 2005)
Comments:None (candidate not yet proposed)
F7: