Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0230

Overview

Vulnerability Score 5.0 5.0
CVE Id CVE-2002-0230
Last Modified 05 Sep 2008 04:27:29
Published 16 May 2002 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0230

Summary

Cross-site scripting vulnerability in fom.cgi of Faq-O-Matic 2.712 allows remote attackers to execute arbitrary Javascript on other clients via the cmd parameter, which causes the script to be inserted into an error message.

Vulnerable Systems

Application

  • Faq-o-matic 2.712


References

DEBIAN - DSA-109

CONFIRM - http://sourceforge.net/mailarchive/forum.php?thread_id=464940&forum_id=6367

BUGTRAQ - 20020205 Faq-O-Matic Cross-Site Scripting

BUGTRAQ - 20020204 [SUPERPETZ ADVISORY #002- Faq-O-Matic Cross-Site Scripting Vulnerability]


Last Updated: 27 May 2016 10:36:50