Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-0587

Overview

Vulnerability Score 6.9 6.9
CVE Id CVE-2003-0587
Last Modified 05 Sep 2008 04:34:43
Published 18 Aug 2003 12:00:00
Confidentiality Impact COMPLETE COMPLETE
Integrity Impact COMPLETE COMPLETE
Availability Impact COMPLETE COMPLETE
Access Vector LOCAL
Access Complexity MEDIUM
Authentication NONE

CVE-2003-0587

Summary

Cross-site scripting (XSS) vulnerability in Infopop Ultimate Bulletin Board (UBB) 6.x allows remote authenticated users to execute arbitrary web script and gain administrative access via the "displayed name" attribute of the "ubber" cookie.

Vulnerable Systems

Application

  • Infopop Ultimate Bulletin Board 6


References

BUGTRAQ - 20030716 Changing UBB cookie allows account hijack


Last Updated: 27 May 2016 10:37:58