This script is Copyright (C) 2003-2013 Tenable Network Security, Inc.
The remote web server is vulnerable to a cross-site scripting attack.
The remote web server is running with Front Page extensions. The
remote version of the FrontPage extensions are vulnerable to a cross-
site scripting issue when the CGI /_vti_bin/shtml.dll is provided with
See also :
Microsoft has released a set of patches for IIS 4.0 and 5.0.
Risk factor :
Medium / CVSS Base Score : 4.3
CVSS Temporal Score : 4.3
Public Exploit Available : false