Published: 30/06/2003 Updated: 18/10/2016

CVSS v2 Base Score: 6.8 | Impact Score: 6.4 | Exploitability Score: 8.6

VMScore: 685

Vector: AV:N/AC:M/Au:N/C:P/I:P/A:P

Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote malicious users to insert arbitrary web script or HTML via an HTTP request that generates an "Invalid JSP file" error, which inserts the text in the resulting error message.

Vulnerable Product	Search on Vulmon	Subscribe to Product
sun one application server 7.0

source: wwwsecurityfocuscom/bid/7710/info Sun ONE Application Server has been reported prone to a cross-site scripting vulnerability Sun ONE Application Server does not adequately filter script code from URL parameters, making it prone to cross-site scripting attacks Attacker-supplied script code may be included in a malicious link to ...

NVD-CWE-Other http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert%2F55221&zone_32=category%3Asecurity http://www.ciac.org/ciac/bulletins/n-103.shtml http://www.iss.net/security_center/static/12095.php http://www.securityfocus.com/bid/7710 http://www.spidynamics.com/sunone_alert.html http://sunsolve.sun.com/pub-cgi/retrieve.pl?doc=fsalert/57605 http://sunsolve.sun.com/search/document.do?assetkey=1-66-201009-1 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000610.1-1 http://marc.info/?l=bugtraq&m=105409846029475&w=2 https://nvd.nist.gov https://www.exploit-db.com/exploits/22665/

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2003-0413

Vulnerability Summary

Exploits

References

Vulmon Search

About

Products

Connect