Microsoft Information for VU#520707
Microsoft Internet Information Server (IIS) contains cross-site scripting vulnerability in redirect response messages
- Vendor Information Help Date Notified:
- Statement Date:
- Date Updated: 10 Apr 2002
The vendor has not provided us with any further information regarding this vulnerability.
The vulnerability applies to individuals who visit sites that use IIS, not to the web sites themselves. That is, cross-site-scripting attacks are attacks against web browsers, not web servers.