Vulnerability Description
Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote attackers to inject arbitrary web script or HTML via a parameter in a data source, aka "Report Viewer Controls XSS Vulnerability."
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Microsoft | Report Viewer | 2005 |
| Microsoft | Visual Studio | 2005 |
Related Weaknesses (CWE)
References
- http://marc.info/?l=bugtraq&m=145326307707460&w=2Third Party Advisory
- http://www.securityfocus.com/bid/49033
- http://www.us-cert.gov/cas/techalerts/TA11-221A.htmlThird Party AdvisoryUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-06
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-cThird Party Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://marc.info/?l=bugtraq&m=145326307707460&w=2Third Party Advisory
- http://www.securityfocus.com/bid/49033
- http://www.us-cert.gov/cas/techalerts/TA11-221A.htmlThird Party AdvisoryUS Government Resource
- https://docs.microsoft.com/en-us/security-updates/securitybulletins/2011/ms11-06
- https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-cThird Party Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
FAQ
What is CVE-2011-1976?
CVE-2011-1976 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Cross-site scripting (XSS) vulnerability in the Report Viewer Control in Microsoft Visual Studio 2005 SP1 and Report Viewer 2005 SP1 allows remote attackers to inject arbitrary web script or HTML via ...
How severe is CVE-2011-1976?
CVE-2011-1976 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2011-1976?
Check the references section above for vendor advisories and patch information. Affected products include: Microsoft Report Viewer, Microsoft Visual Studio.