Vulnerabilities > CVE-2002-1006 - Unspecified vulnerability in BBC Education Betsie
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN bbc-education
exploit available
Summary
Cross-site scripting (XSS) vulnerability in BBC Education Text to Speech Internet Enhancer (Betsie) 1.5.11 and earlier allows remote attackers to execute arbitrary web script via parserl.pl.
Vulnerable Configurations
Exploit-Db
| description | BBC Education Betsie 1.5 Parserl.PL Cross-Site Scripting Vulnerability. CVE-2002-1006 . Webapps exploit for cgi platform |
| id | EDB-ID:21587 |
| last seen | 2016-02-02 |
| modified | 2002-07-01 |
| published | 2002-07-01 |
| reporter | Mark Rowe |
| source | https://www.exploit-db.com/download/21587/ |
| title | BBC Education Betsie 1.5 Parserl.PL Cross-Site Scripting Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0002.html
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0002.html
- http://www.bbc.co.uk/education/betsie/parser.pl.txt
- http://www.bbc.co.uk/education/betsie/parser.pl.txt
- http://www.iss.net/security_center/static/9468.php
- http://www.iss.net/security_center/static/9468.php
- http://www.securityfocus.com/bid/5135
- http://www.securityfocus.com/bid/5135