CVE-2002-1009

{"id": "CVE-2002-1009", "metrics": {"cvssMetricV2": [{"type": "Primary", "source": "nvd@nist.gov", "cvssData": {"version": "2.0", "baseScore": 7.5, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P", "authentication": "NONE", "integrityImpact": "PARTIAL", "accessComplexity": "LOW", "availabilityImpact": "PARTIAL", "confidentialityImpact": "PARTIAL"}, "acInsufInfo": false, "impactScore": 6.4, "baseSeverity": "HIGH", "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": true, "userInteractionRequired": false}]}, "published": "2002-10-04T04:00:00.000", "references": [{"url": "http://archives.neohapsis.com/archives/bugtraq/2002-07/0112.html", "source": "cve@mitre.org"}, {"url": "http://www.iss.net/security_center/static/9548.php", "tags": ["Vendor Advisory"], "source": "cve@mitre.org"}, {"url": "http://www.securityfocus.com/bid/5211", "tags": ["Exploit", "Vendor Advisory"], "source": "cve@mitre.org"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Primary", "source": "nvd@nist.gov", "description": [{"lang": "en", "value": "NVD-CWE-Other"}]}], "descriptions": [{"lang": "en", "value": "Cross-site scripting vulnerability in PowerBASIC pbcgi.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via the (1) \"Name\" or (2) \"E-mail\" parameters."}], "lastModified": "2008-09-05T20:29:32.143", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:a:summit_computer_networks:lil_http_server:2.1:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "9DDCE4B2-41B9-4548-82E8-E884C6091FBF"}, {"criteria": "cpe:2.3:a:summit_computer_networks:lil_http_server:2.2:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7A843CF-0322-46EE-AD9A-C564007FED58"}], "operator": "OR"}]}], "sourceIdentifier": "cve@mitre.org"}