Microsoft » Windows Vista : Security Vulnerabilities, CVEs, Published In August 2007 (XSS)
Cross-site scripting (XSS) vulnerability in Windows Vista Feed Headlines Gadget (aka Sidebar RSS Feeds Gadget) in Windows Vista allows user-assisted remote attackers to execute arbitrary code via an RSS feed with crafted HTML attributes, which are not properly removed and are rendered in the local zone.
Max CVSS
4.3
EPSS Score
95.92%
Published
2007-08-14
Updated
2018-10-12
1 vulnerabilities found