CVE-2007-0939 Information

Description

Cross-site scripting (XSS) vulnerability in Microsoft Content Management Server (MCMS) 2001 SP1 and 2002 SP2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving HTML redirection queries aka \Cross-site Scripting and Spoofing Vulnerability.\

Reference

http://secunia.com/advisories/24819 http://www.osvdb.org/34007 http://www.securityfocus.com/archive/1/466331/100/200/threaded http://www.securityfocus.com/bid/22860 http://www.securitytracker.com/id?1017894 http://www.vupen.com/english/advisories/2007/1322 https://docs.microsoft.com/en-us/security-updates/securitybulletins/2007/ms07-018 https://oval.cisecurity.org/repository/search/definition/oval3Aorg.mitre.oval3Adef3A1575