Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2003-1149

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2003-1149
Last Modified 05 Sep 2008 04:36:10
Published 27 Oct 2003 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2003-1149

Summary

Cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003 6.0.4.34 allows remote attackers to inject arbitrary web script or HTML via a URL to a blocked site, which is displayed on the blocked sites error page.

Vulnerable Systems

Application

  • Symantec Norton Internet Security 2003 6.0.4.34


References

BID - 8904

OSVDB - 2714

XF - norton-is-blocked-xss(13528)

BUGTRAQ - 20031027 Norton Internet Security 2003 XSS

CONFIRM - http://securityresponse.symantec.com/avcenter/security/Content/2003.10.27.html

SECUNIA - 10067


Last Updated: 27 May 2016 10:38:14