CVE-2011-1976

Currently unrated

Key Information:

Vendor: Microsoft
Status: Visual Studio; Report Viewer
Vendor: CVE Published:; 10 August 2011

Summary

Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote attackers to inject arbitrary web script or HTML via a parameter in a data source, aka "Report Viewer Controls XSS Vulnerability."

References

https://docs.microsoft.com/en-us/security-updates/securit...

vendor-advisoryx_refsource_MS

http://marc.info/?l=bugtraq&m=145326307707460&w=2

vendor-advisoryx_refsource_HP

https://oval.cisecurity.org/repository/search/definition/...

vdb-entrysignaturex_refsource_OVAL

EPSS Score

93% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Aug 10, 2011
Vulnerability Reserved
May 9, 2011

Collectors

NVD DatabaseMitre Database