Vulnerabilities > CVE-2002-0733 - Cross-Site Scripting vulnerability in Acme Labs Thttpd 2.20B

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

acme-labs

exploit available

NVD

Published: 2002-08-12

Updated: 2008-09-05

Summary

Cross-site scripting vulnerability in thttpd 2.20 and earlier allows remote attackers to execute arbitrary script via a URL to a nonexistent page, which causes thttpd to insert the script into a 404 error message.

Vulnerable Configurations

Part	Description	Count
Application	Acme_Labs Acme Labs Thttpd 2.20B	1

Exploit-Db

description	ACME Labs thttpd 2.20 Cross-Site Scripting Vulnerability. CVE-2002-0733. Remote exploit for linux platform
id	EDB-ID:21422
last seen	2016-02-02
modified	2002-04-25
published	2002-04-25
reporter	frog
source	https://www.exploit-db.com/download/21422/
title	ACME Labs thttpd 2.20 - Cross-Site Scripting Vulnerability

Summary

Vulnerable Configurations

Exploit-Db

References