CVE-2002-0074

N/A Unknown

Published: April 22, 2002 Modified: April 16, 2026

Description

Cross-site scripting vulnerability in Help File search facility for Internet Information Server (IIS) 4.0, 5.0 and 5.1 allows remote attackers to embed scripts into another user's session.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory

http://seclists.org/bugtraq/2002/Apr/0126.html

Source: cve@mitre.org

http://www.cert.org/advisories/CA-2002-09.html

Source: cve@mitre.org

US Government Resource

http://www.cgisecurity.com/advisory/9.txt

Source: cve@mitre.org

http://www.cisco.com/warp/public/707/Microsoft-IIS-vulnerabilities-MS02-018.shtml

Source: cve@mitre.org

http://www.iss.net/security_center/static/8802.php

Source: cve@mitre.org

http://www.kb.cert.org/vuls/id/883091

Source: cve@mitre.org

US Government Resource

http://www.osvdb.org/3338

Source: cve@mitre.org

http://www.securityfocus.com/bid/4483

Source: cve@mitre.org

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2002/ms02-018

Source: cve@mitre.org

https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A46

Source: cve@mitre.org

http://seclists.org/bugtraq/2002/Apr/0126.html