Vulnerabilities > CVE-2001-0520 - Remote Security vulnerability in Aladdin Knowledge Systems Esafe Gateway 3.0
Attack vector
NETWORK Attack complexity
LOW Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Aladdin eSafe Gateway versions 3.0 and earlier allows a remote attacker to circumvent filtering of SCRIPT tags by embedding the scripts within certain HTML tags including (1) onload in the BODY tag, (2) href in the A tag, (3) the BUTTON tag, (4) the INPUT tag, or (5) any other tag in which scripts can be defined.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | eSafe Gateway 2.1 Script-filtering Bypass Vulnerability. CVE-2001-0520. Remote exploits for multiple platform |
id | EDB-ID:20869 |
last seen | 2016-02-02 |
modified | 2001-05-20 |
published | 2001-05-20 |
reporter | eDvice Security Services |
source | https://www.exploit-db.com/download/20869/ |
title | eSafe Gateway 2.1 Script-filtering Bypass Vulnerability |