Lucene search

[email protected]NVD:CVE-2002-1053

HistoryOct 04, 2002 - 4:00 a.m.

CVE-2002-1053

2002-10-0404:00:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

High

EPSS

0.01

Percentile

83.9%

JSON

Cross-site scripting (XSS) vulnerability in W3C Jigsaw Proxy Server before 2.2.1 allows remote attackers to execute arbitrary script via a URL that contains a reference to a nonexistent host followed by the script, which is included in the resulting error message.

Affected configurations

Nvd

Node

w3cjigsawMatch2.2

VendorProductVersionCPE
w3cjigsaw2.2cpe:2.3:a:w3c:jigsaw:2.2:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
w3c	jigsaw	2.2	cpe:2.3:a:w3c:jigsaw:2.2:::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-08/0190.html

www.iss.net/security_center/static/9914.php

www.osvdb.org/4015

www.securityfocus.com/bid/5506

www.w3.org/Jigsaw/RelNotes.html#2.2.1

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

High

EPSS

0.01

Percentile

83.9%

JSON

Related for NVD:CVE-2002-1053

cvelist1 cve1