Used Microsoft Windows 2000 Patch: Indexing Service Cross Site Scripting for Windows? Share your experience and help other users.
Developer’s Description
Indexing Services is a search engine that is integrated with Internet Information Services (IIS) 5.0 and Windows 2000 that allows browsers to perform full-text searches of Web sites. Indexing Services does not properly validate all search inputs before processing them, and is consequently vulnerable to Cross-Site Scripting (CSS). CSS allows a malicious user to "inject" code into another person's Web session. If a malicious user is successful in exploiting this vulnerability, he or she can use a Web site hosted by your server to run code on a visting user's browser each time it returns to your Web site.
Note Indexing Services ships and installs with Windows 2000, but is not enabled by default. If you are running Web servers on Windows 2000 and you have enabled Indexing Services, Microsoft recommends that you apply this update.
For more information about this vulnerability, read Microsoft Security Bulletin MS00-084.
Used Microsoft Windows 2000 Patch: Indexing Service Cross Site Scripting for Windows? Share your experience and help other users.
Explore More
StartPro
Trial versionD20148-001-001.exe
FreeTweakNow PowerPack 2011 Portable
Free
Microsoft Web Application Configuration Analyzer
FreeDataRay-|;> WinCamUCM USB2.0 v1 (VID=1632 PID=1001)
Free
iNFekt
FreeActiontec 56k PCMCIA Fax Modem
Free
Battery Watcher
Free
HDHacker Portable
FreeB2130_Modem.exe
Free
Handy Password manager USB Edition
Trial version
Shurzanop
Trial version
.svg){kind=icon}
