Remote Code Execution Vulnerability in Hotmail Due to Improper JavaScript Filtering
CVE-2000-0085
Currently unrated
What is CVE-2000-0085?
The vulnerability in Hotmail arises from insufficient filtering of JavaScript code within users' mailboxes. This flaw permits a remote attacker to execute arbitrary code by manipulating the LOWSRC or DYNRC parameters within the IMG tag. Users may be exploited without their knowledge, leading to potential data theft or unauthorized actions taken within their Hotmail accounts.