SQL Server Reporting Services Report Manager XSS (Cross-Side Scripting) vulnerabilities fixed with the patches published in Microsoft Security Bulletin MS12-070 which is released today

This security bulletin article applies to the following SQL Server versions :

  • Microsoft SQL Server 2012
  • Microsoft SQL Server 2008 R2 Service Pack 1
  • Microsoft SQL Server 2008 R2
  • Microsoft SQL Server 2008 Service Pack 3
  • Microsoft SQL Server 2005 Service Pack 4
  • Microsoft SQL Server 2000 Reporting Services Service Pack 2

You can find the details and obtain the patches from here