Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2001-1352

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2001-1352
Last Modified 05 Sep 2008 04:26:19
Published 27 Dec 2001 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2001-1352

Summary

Cross-site scripting vulnerability in Namazu 2.0.9 and earlier allows remote attackers to execute arbitrary Javascript as other web users via an error message that is returned when an invalid index file is specified in the idxname parameter.

Vulnerable Systems

Application

  • Namazu 2.0.9


References

BUGTRAQ - 20020109 Details on the updated namazu packages that are available

REDHAT - RHSA-2001:179

XF - linux-namazu-css(7875)

OSVDB - 5691

BUGTRAQ - 20011227 Re: [RHSA-2001:162-04] Updated namazu packages are available


Last Updated: 27 May 2016 10:36:38