Vulnerability Details CVE-2002-1795
Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX control allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.222
EPSS Ranking 95.4%
CVSS Severity
CVSS v2 Score 4.3
References
- http://online.securityfocus.com/archive/1/294938
- http://www.iss.net/security_center/static/10342.php
- http://www.lac.co.jp/security/english/snsadv_e/56_e.html
- http://www.securityfocus.com/bid/5952
- http://online.securityfocus.com/archive/1/294938
- http://www.iss.net/security_center/static/10342.php
- http://www.lac.co.jp/security/english/snsadv_e/56_e.html
- http://www.securityfocus.com/bid/5952
Products affected by CVE-2002-1795
-
cpe:2.3:a:microsoft:tsac_activex_control:-