CVE-2002-0733

Опубликовано: 12 авг. 2002

Источник: nvd

CVSS2: 7.5

EPSS Низкий

Описание

Cross-site scripting vulnerability in thttpd 2.20 and earlier allows remote attackers to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 error message.

Ссылки

http://archives.neohapsis.com/archives/vuln-dev/2002-q2/0155.html
Vendor Advisory
http://www.acme.com/software/thttpd/#releasenotes
http://www.ifrance.com/kitetoua/tuto/5holes1.txt
http://www.iss.net/security_center/static/9029.php
Vendor Advisory
http://www.osvdb.org/5125
http://www.securityfocus.com/bid/4601
Exploit
Vendor Advisory
http://archives.neohapsis.com/archives/vuln-dev/2002-q2/0155.html
Vendor Advisory
http://www.acme.com/software/thttpd/#releasenotes
http://www.ifrance.com/kitetoua/tuto/5holes1.txt
http://www.iss.net/security_center/static/9029.php
Vendor Advisory
http://www.osvdb.org/5125
http://www.securityfocus.com/bid/4601
Exploit
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:acme_labs:thttpd:2.20b:*:*:*:*:*:*:*

EPSS

Процентиль: 93%

0.09589

Низкий

7.5 High

CVSS2

Дефекты

NVD-CWE-Other

Связанные уязвимости

CVE-2002-0733

debian

около 23 лет назад

Cross-site scripting vulnerability in thttpd 2.20 and earlier allows r ...

GHSA-97fv-j39h-gpq7

github

больше 3 лет назад