Vulnerabilities > CVE-2001-0520 - Unspecified vulnerability in Aladdin Knowledge Systems Esafe Gateway 3.0
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN aladdin-knowledge-systems
exploit available
Summary
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of SCRIPT tags by embedding the scripts within certain HTML tags including (1) onload in the BODY tag, (2) href in the A tag, (3) the BUTTON tag, (4) the INPUT tag, or (5) any other tag in which scripts can be defined.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | eSafe Gateway 2.1 Script-filtering Bypass Vulnerability. CVE-2001-0520. Remote exploits for multiple platform |
| id | EDB-ID:20869 |
| last seen | 2016-02-02 |
| modified | 2001-05-20 |
| published | 2001-05-20 |
| reporter | eDvice Security Services |
| source | https://www.exploit-db.com/download/20869/ |
| title | eSafe Gateway 2.1 Script-filtering Bypass Vulnerability |