Vulnerability Details CVE-2002-2192
Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.01
EPSS Ranking 76.1%
CVSS Severity
CVSS v2 Score 4.3
References
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0063.html
- http://online.securityfocus.com/archive/1/298987
- http://www.iss.net/security_center/static/10561.php
- http://www.securityfocus.com/bid/6131
- http://www.securityfocus.com/bid/6143
- http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0063.html
- http://online.securityfocus.com/archive/1/298987
- http://www.iss.net/security_center/static/10561.php
- http://www.securityfocus.com/bid/6131
- http://www.securityfocus.com/bid/6143
Products affected by CVE-2002-2192
-
cpe:2.3:a:perception:liteserve:2.0.1