CVE-2005-0049

CVE Database · CVE-2005-0049

CVE-2005-0049

· N/AModified

CVSS v3.1

N/A

EPSS

20.19%

Published

May 2, 2005

Modified

Apr 15, 2026

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Windows SharePoint Services and SharePoint Team Services for Windows Server 2003 does not properly validate an HTTP redirection query, which allows remote attackers to inject arbitrary HTML and web script via a cross-site scripting (XSS) attack, or to spoof the web cache.

Affected Products (3)

microsoft · sharepoint_portal_servervulnerable

microsoft · sharepoint_team_servicesvulnerable

References (8)

http://www.kb.cert.org/vuls/id/340409

PatchUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA05-039A.html

PatchUS Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-006

https://exchange.xforce.ibmcloud.com/vulnerabilities/19091

http://www.kb.cert.org/vuls/id/340409

PatchUS Government Resource

http://www.us-cert.gov/cas/techalerts/TA05-039A.html

PatchUS Government Resource

https://docs.microsoft.com/en-us/security-updates/securitybulletins/2005/ms05-006

KEV Catalog EPSS Scores Vendors All CVEs