CVE-2002-1315
Published Nov 29, 2002
Last updated 8 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote attackers to execute web script or HTML as the iPlanet administrator by injecting the desired script into error logs, and possibly escalating privileges by using the XSS vulnerability in conjunction with another issue (CVE-2002-1316).
- Source
- cve@mitre.org
- NVD status
- Modified
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 6.8
- Impact score
- 6.4
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:P/A:P
Weaknesses
- nvd@nist.gov
- NVD-CWE-Other
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B2091816-7705-462D-BB91-76D07B9A1F3E"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "11794060-A796-4262-BFF5-E17388DD18FA"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "5BA1EF56-6656-44C5-9B59-0EDB84FF44A8"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83651DFD-50C1-451F-AAB1-F1392790CD09"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3A6338DC-E60A-4BA9-8CB3-9BA8DB6D9834"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8099D845-6335-4B52-B8FB-210EB1CA7B0F"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "243B2B9A-920C-4EE8-A8BD-46810C6C76D8"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B9ECA407-AA77-4155-A746-10C3F49519FB"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp8:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "667ED9E1-60A5-4338-822C-DC12965D2A46"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp9:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CB2D89D1-D6AD-44BA-BEFC-50F7CB38CA36"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "DECE2CAC-D33D-458A-9B44-44063B0BF22B"
},
{
"criteria": "cpe:2.3:a:iplanet:iplanet_web_server:4.1_sp11:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "76C88C5B-F7D5-40A5-983D-6C757798EB81"
}
],
"operator": "OR"
}
]
}
]