Lucene search

[email protected]NVD:CVE-2003-0292

HistoryJun 16, 2003 - 4:00 a.m.

CVE-2003-0292

2003-06-1604:00:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.7

Confidence

High

EPSS

0.048

Percentile

92.7%

JSON

Cross-site scripting (XSS) vulnerability in Inktomi Traffic-Server 5.5.1 allows remote attackers to insert arbitrary web script or HTML into an error page that appears to come from the domain that the client is visiting, aka “Man-in-the-Middle” XSS.

Affected configurations

Nvd

Node

inktomiinktomi_traffic-serverMatch5.5.1

VendorProductVersionCPE
inktomiinktomi_traffic-server5.5.1cpe:2.3:a:inktomi:inktomi_traffic-server:5.5.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
inktomi	inktomi_traffic-server	5.5.1	cpe:2.3:a:inktomi:inktomi_traffic-server:5.5.1:::::::*

References

marc.info/?l=bugtraq&m=105292750807005&w=2

www.securityfocus.com/bid/7596

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.7

Confidence

High

EPSS

0.048

Percentile

92.7%

JSON

Related for NVD:CVE-2003-0292

cve1 nessus1 cvelist1