Lucene search

[email protected]NVD:CVE-2002-1348

HistoryFeb 19, 2003 - 5:00 a.m.

CVE-2002-1348

2003-02-1905:00:00

[email protected]

web.nvd.nist.gov

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.3%

JSON

w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.

Affected configurations

NVD

Node

w3mw3mMatch0.2

w3mw3mMatch0.2.1

w3mw3mMatch0.2.2

w3mw3mMatch0.2.3

w3mw3mMatch0.2.4

w3mw3mMatch0.2.5

w3mw3mMatch0.2.5.1

w3mw3mMatch0.3

w3mw3mMatch0.3.1

w3mw3mMatch0.3.2

w3mw3mMatch0.3.2.1

w3mw3mMatch0.3.2.2

References

marc.info/?l=bugtraq&m=104552193927323&w=2

sourceforge.net/project/shownotes.php?release_id=126233

www.debian.org/security/2003/dsa-249

www.debian.org/security/2003/dsa-250

www.debian.org/security/2003/dsa-251

www.iss.net/security_center/static/11266.php

www.redhat.com/support/errata/RHSA-2003-044.html

www.redhat.com/support/errata/RHSA-2003-045.html

www.securityfocus.com/bid/6794

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:L/Au:N/C:P/I:N/A:N

6.2 Medium

AI Score

Confidence

Low

0.006 Low

EPSS

Percentile

79.3%

JSON

Related for NVD:CVE-2002-1348

debiancve1 cve2 cvelist1 nessus4 debian6 openvas6 redhat1 securityvulns1 osv2 nvd1