Published: 31/12/2002 Updated: 05/09/2008

CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6

VMScore: 435

Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in Compaq Insight Management Agents 2.0, 2.1, 3.6.0, 4.2 and 4.3.7 allows remote malicious users to inject arbitrary web script or HTML via a URL, which inserts the script into the resulting error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
compaq insight management agent 2.1
compaq insight management agent 3.6.0
compaq insight management agent 4.2
compaq insight management agent 4.37
compaq insight management agent 2.0
compaq insight management agent 2.1_b

source: wwwsecurityfocuscom/bid/5780/info It has been reported that the Compaq Insight Manager web interface is prone to cross-site scripting attacks It is possible to construct a malicious link to a Compaq Insight Manager web interface that includes arbitrary script code When the link is visited with a web client, the script code will ...

CWE-79 http://www.securityfocus.com/archive/1/293715 http://online.securityfocus.com/archive/1/294020 http://online.securityfocus.com/archive/1/294160 http://www.securityfocus.com/bid/5780 http://www.securiteam.com/windowsntfocus/6G00K0A5SM.html https://nvd.nist.gov https://www.exploit-db.com/exploits/21827/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2002-2422

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect