← Back

CVE-2005-0452

nvd nist
Published: Feb 16, 2005Modified: Apr 16, 2026

JSON object

Loading...
4.3
Vector
AV:N/AC:M/Au:N/C:N/I:P/A:N
Exploitability: 8.6 / Impact: 2.9
Source: NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in Microsoft ASP.NET (.Net) 1.0 and 1.1 to SP1 allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, including ">" and "<".

Affected (5)

Products: Microsoft: Asp.net
Microsoft
1 product
Asp.net
Configuration A
5 vulnerable
Vulnerable SoftwareAffected Versions
Microsoft
Asp.net
Version 1.0
Asp.net
Version 1.0 sp1
Asp.net
Version 1.0 sp2
Asp.net
Version 1.1
Asp.net
Version 1.1 sp1

References (8)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory

Timeline

No history available yet.