Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote malicious users to execute web script or HTML as the iPlanet administrator by injecting the desired script into error logs, and possibly escalating privileges by using the XSS vulnerability in conjunction with another issue (CVE-2002-1316).
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
iplanet iplanet web server 4.1_sp10 |
||
iplanet iplanet web server 4.1_sp11 |
||
iplanet iplanet web server 4.1_sp8 |
||
iplanet iplanet web server 4.1_sp9 |
||
iplanet iplanet web server 4.1_sp2 |
||
iplanet iplanet web server 4.1_sp3 |
||
iplanet iplanet web server 4.1 |
||
iplanet iplanet web server 4.1_sp1 |
||
iplanet iplanet web server 4.1_sp6 |
||
iplanet iplanet web server 4.1_sp7 |
||
iplanet iplanet web server 4.1_sp4 |
||
iplanet iplanet web server 4.1_sp5 |