Executive Summary
Informations | |||
---|---|---|---|
Name | CVE-2003-0413 | First vendor Publication | 2003-06-30 |
Vendor | Cve | Last vendor Modification | 2016-10-18 |
Security-Database Scoring CVSS v3
Cvss vector : N/A | |||
---|---|---|---|
Overall CVSS Score | NA | ||
Base Score | NA | Environmental Score | NA |
impact SubScore | NA | Temporal Score | NA |
Exploitabality Sub Score | NA | ||
Calculate full CVSS 3.0 Vectors scores |
Security-Database Scoring CVSS v2
Cvss vector : (AV:N/AC:M/Au:N/C:P/I:P/A:P) | |||
---|---|---|---|
Cvss Base Score | 6.8 | Attack Range | Network |
Cvss Impact Score | 6.4 | Attack Complexity | Medium |
Cvss Expoit Score | 8.6 | Authentication | None Required |
Calculate full CVSS 2.0 Vectors scores |
Detail
Cross-site scripting (XSS) vulnerability in the webapps-simple sample application for (1) Sun ONE Application Server 7.0 for Windows 2000/XP or (2) Sun Java System Web Server 6.1 allows remote attackers to insert arbitrary web script or HTML via an HTTP request that generates an "Invalid JSP file" error, which inserts the text in the resulting error message. |
Original Source
Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2003-0413 |
CPE : Common Platform Enumeration
Type | Description | Count |
---|---|---|
Application | 1 |
Open Source Vulnerability Database (OSVDB)
Id | Description |
---|---|
9191 | Sun ONE Application Server Invalid JSP File Error XSS |
8197 | Sun Java System webapps-simple Application XSS Sun Java System Web Server contains a flaw that allows a remote cross site scripting attack. This flaw exists because the application does not validate scripted content in the query string upon submission to an invalid .jsp script. This could allow a user to create a specially crafted URL that would execute arbitrary code in a user's browser within the trust relationship between the browser and the server, leading to a loss of integrity. |
Sources (Detail)
Alert History
Date | Informations |
---|---|
2021-05-04 12:02:04 |
|
2021-04-22 01:02:10 |
|
2020-05-23 00:15:25 |
|
2016-10-18 12:01:11 |
|
2013-05-11 11:51:20 |
|