Cross-site scripting (XSS) vulnerability in adfs/ls in Active Directory Federation Services (AD FS) in Microsoft Windows Server 2008 SP2 and R2 SP1 and Server 2012 allows remote attackers to inject arbitrary web script or HTML via the wct parameter, aka "ADFS XSS Elevation of Privilege Vulnerability."
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: microsoft
Published: 2015-06-10T01:00:00
Updated: 2018-10-12T19:57:01
Reserved: 2015-02-17T00:00:00
Link: CVE-2015-1757
JSON object: View
NVD Information
Status : Modified
Published: 2015-06-10T01:59:29.483
Modified: 2018-10-12T22:09:07.857
Link: CVE-2015-1757
JSON object: View
Redhat Information
No data.
CWE