Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2002-0329

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2002-0329
Last Modified 10 Sep 2008 08:00:57
Published 25 Jun 2002 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2002-0329

Summary

Cross-site scripting vulnerability in Snitz Forums 2000 3.3.03 and earlier allows remote attackers to execute arbitrary script as other Forums 2000 users via Javascript in an IMG tag.

Vulnerable Systems

Application

  • Snitz Communications Snitz Forums 2000 3.0

  • Snitz Communications Snitz Forums 2000 3.1

  • Snitz Communications Snitz Forums 2000 3.2.03

  • Snitz Communications Snitz Forums 2000 3.3

  • Snitz Communications Snitz Forums 2000 3.3.01

  • Snitz Communications Snitz Forums 2000 3.3.02


References

CERT-VN - VU#132011

XF - snitz-img-css(8309)

BUGTRAQ - 20020227 RE: Open Bulletin Board javascript bug.

CONFIRM - http://forum.snitz.com/forum/link.asp?TOPIC_ID=23660

BID - 4192

BUGTRAQ - 20020227 Snitz 2000 Code Patch (was RE: Open Bulletin Board javascript bug.)


Last Updated: 27 May 2016 10:36:52