Lucene search

K
cve[email protected]CVE-2003-0587
HistoryAug 18, 2003 - 4:00 a.m.

CVE-2003-0587

2003-08-1804:00:00
NVD-CWE-Other
web.nvd.nist.gov
19
cve-2003-0587
cross-site scripting
infopop
ubb
xss
remote authenticated users
administrative access
web script

6.7 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

52.8%

Cross-site scripting (XSS) vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.x allows remote authenticated users to execute arbitrary web script and gain administrative access via the β€œdisplayed name” attribute of the β€œubber” cookie.

6.7 Medium

AI Score

Confidence

High

6.9 Medium

CVSS2

Access Vector

LOCAL

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:L/AC:M/Au:N/C:C/I:C/A:C

0.002 Low

EPSS

Percentile

52.8%