CVE-2002-0459

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2002-0459
Cross-site scripting vulnerability in Board-TNK 1.3.1 and earlier allows remote attackers to execute arbitrary Javascript via the WEB parameter.

7.6 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:H/Au:N/C:C/I:C/A:C

Exploitability : 4.9 / Impact : 10.0

Access Vector NETWORK

Access Complexity HIGH

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://translate.google.com/translate?u=http%3A%2F%2Fwww.linux-sottises.net%2Findex.php%3Fnews_init%3D13%23newstag&langpair=fr%7Cen&hl=en&ie=UTF8&oe=UTF8&prev=%2Flanguage_tools
http://www.iss.net/security_center/static/8475.php Patch Vendor Advisory
http://www.securityfocus.com/archive/1/262694 Vendor Advisory
http://www.securityfocus.com/bid/4305 Patch Vendor Advisory
Configurations

Configuration 1 (hide)

OR cpe:2.3:a:linux-sottises:board-tnk:1.3:*:*:*:*:*:*:*
cpe:2.3:a:linux-sottises:news-tnk:1.2.1:*:*:*:*:*:*:*
History

No history.

Information

Published : 2002-08-12 04:00

Updated : 2024-02-04 16:31

NVD link : CVE-2002-0459

Mitre link : CVE-2002-0459

CVE.ORG link : CVE-2002-0459

JSON object : View

Products Affected

linux-sottises

  • board-tnk
  • news-tnk
CWE
NVD-CWE-Other