Make Homepage  | Add To Favorites  | Print Page | Contact
     More Technical Information Than You Can Handle. 
 

.
 

MS12-007 - Important : Vulnerability in AntiXSS...

  
Severity Rating: Important
Revision Note: V2.0 (January 11, 2012): Announced that the original upgrade package, AntiXSS Library version 4.2, has been replaced with AntiXSS Library version 4.2.1. All users of the AntiXSS Library will need to upgrade to AntiXSS Library version 4.2.1 to help ensure they are protected from the vulnerability described in this bulletin. See the update FAQ for more information.
Summary: This security update resolves one privately reported vulnerability in the Microsoft Anti-Cross Site Scripting (AntiXSS) Library. The vulnerability could allow information disclosure if an attacker passes a malicious script to a website using the sanitization function of the AntiXSS Library. The consequences of the disclosure of that information depends on the nature of the information itself. Note that this vulnerability would not allow an attacker to execute code or to elevate the attacker's user rights directly, but it could be used to produce information that could be used to try to further compromise the affected system. Only sites that use the sanitization module of the AntiXSS Library are affected by this vulnerability.

- View Microsoft Security Bulletin MS12-007
- View Microsoft Knowledge Base Article - on: 2.
- Visit Microsoft Corporation

 Microsoft
Posted: January 11, 2012 |  By: Wissen Schwamm
Recent Microsoft related news.
MS14-085 - Important: Vulnerability in Microsoft Graphics Component Could Allow Information Disclosure (3013126) - Version: 1.1
MS16-123 - Important: Security Update for Windows Kernel-Mode Drivers (3192892) - Version: 3.0
MS16-087 - Critical: Security Update for Windows Print Spooler Components (3170005) - Version: 2.0
MS16-095 - Critical: Cumulative Security Update for Internet Explorer (3177356) - Version: 3.0
MS16-039 - Critical: Security Update for Microsoft Graphics Component (3148522) - Version: 4.0
+ View more Microsoft related news +
     

Copyright © 2026 Nerd Press All Rights Reserved. | Last Updated: June 15, 2026
Mozilla/5.0 AppleWebKit/537.36 (KHTML, like Gecko; compatible; ClaudeBot/1.0; +claudebot@anthropic.com)