Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0416

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2003-0416
Last Modified 05 Sep 2008 04:34:15
Published 30 Jun 2003 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2003-0416

Summary

Cross-site scripting (XSS) vulnerability in index.cgi for Bandmin 1.4 allows remote attackers to insert arbitrary HTML or script via (1) the year parameter in a showmonth action, (2) the month parameter in a showmonth action, or (3) the host parameter in a showhost action.

Vulnerable Systems

Application

  • Bandmin 1.4


References

BID - 7729

XF - bandmin-index-xss(12108)

BUGTRAQ - 20030528 Bandmin 1.4 XSS Exploit


Last Updated: 27 May 2016 10:37:54