CVE-2003-0615 - Secunia Advisories - Vulnerability Information

CVE Reference: CVE-2003-0615
NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE: CVE-2003-0615

Description: Cross-site scripting (XSS) vulnerability in start_form() of CGI.pm allows remote attackers to insert web script via a URL that is fed into the form's action parameter.

CVE Status: Candidate

References: XF http://xforce.iss.net/xforce/xfdb/12669 SUNALERT http://sunsolve.sun.com/search/document.do?assetkey=1-26-101426-1 ST 1007234 SCO SAID Secunia Advisory: SA13638 REDHAT http://www.redhat.com/support/errata/RHSA-2003-256.html OVAL http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:470 http://oval.mitre.org/repository/data/getDef?id=oval:org.mitre.oval:def:307 MANDRAKE http://wwwnew.mandriva.com/security/advisories?name=MDKSA-2003:084 FULLDISC http://marc.theaimsgroup.com/?l=full-disclosure&m=105875211018698&w=2 DEBIAN http://www.debian.org/security/2003/dsa-371 CONECTIVA http://distro.conectiva.com.br/atualizacoes/?id=a&anuncio=000713 CIAC http://www.ciac.org/ciac/bulletins/n-155.shtml CERT-VN 246409 BUGTRAQ http://marc.theaimsgroup.com/?l=bugtraq&m=106018783704468&w=2 http://marc.theaimsgroup.com/?l=bugtraq&m=105880349328877&w=2 BID 8231

Return to the previous page.