Cross-site scripting (XSS) vulnerability in the toStaticHTML function in Microsoft Internet Explorer 8, and the SafeHTML function in Microsoft Windows SharePoint Services 3.0 SP2 and Office SharePoint Server 2007 SP2, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors, aka "HTML Sanitization Vulnerability."
History

Thu, 17 Oct 2024 21:15:00 +0000

Type Values Removed Values Added
Metrics cvssV3_1

{'score': 4.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:L/A:N'}

ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: microsoft

Published: 2010-10-13T18:00:00

Updated: 2024-10-17T20:16:42.938Z

Reserved: 2010-09-03T00:00:00

Link: CVE-2010-3243

cve-icon Vulnrichment

Updated: 2024-08-07T03:03:18.488Z

cve-icon NVD

Status : Modified

Published: 2010-10-13T19:00:46.150

Modified: 2024-11-21T01:18:20.687

Link: CVE-2010-3243

cve-icon Redhat

No data.