Vulnerabilities > CVE-2002-1008 - Unspecified vulnerability in Summit Computer Networks LIL Http Server 2.1/2.2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN summit-computer-networks
exploit available
Summary
Cross-site scripting vulnerability in PowerBASIC urlcount.cgi, as included in Lil' HTTP web server, allows remote attackers to execute arbitrary web script in other web browsers via a request to urlcount.cgi that contains the script, which is not filtered when the REPORT capability prints the original request.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 2 |
Exploit-Db
| description | Summit Computer Networks Lil' HTTP Server 2 URLCount.CGI HTML Injection Vulnerability. CVE-2002-1008. Remote exploit for windows platform |
| id | EDB-ID:21581 |
| last seen | 2016-02-02 |
| modified | 2002-06-27 |
| published | 2002-06-27 |
| reporter | Matthew Murphy |
| source | https://www.exploit-db.com/download/21581/ |
| title | Summit Computer Networks Lil' HTTP Server 2 URLCount.CGI HTML Injection Vulnerability |
References
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0332.html
- http://archives.neohapsis.com/archives/bugtraq/2002-06/0332.html
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0072.html
- http://archives.neohapsis.com/archives/bugtraq/2002-07/0072.html
- http://www.iss.net/security_center/static/9445.php
- http://www.iss.net/security_center/static/9445.php
- http://www.securityfocus.com/bid/5115
- http://www.securityfocus.com/bid/5115