Vulnerabilities > CVE-2002-1167 - Cross-Site Scripting vulnerability in IBM Websphere Edge Server 3.6/4.0

047910
CVSS 6.8 - MEDIUM
Attack vector
NETWORK
Attack complexity
MEDIUM
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
ibm
exploit available
NVD
Published: 2002-11-04
Updated: 2008-09-10

Summary

Cross-site scripting (XSS) vulnerability in IBM Web Traffic Express Caching Proxy Server 3.6 and 4.x before 4.0.1.26 allows remote attackers to execute script as other users via an HTTP GET request.

Vulnerable Configurations

Part Description Count
Application
Ibm
2

Exploit-Db

descriptionIBM Websphere Edge Server 3.6/4.0 Cross Site Scripting Vulnerability. CVE-2002-1167. Remote exploit for unix platform
idEDB-ID:21947
last seen2016-02-02
modified2002-10-23
published2002-10-23
reporterRapid7
sourcehttps://www.exploit-db.com/download/21947/
titleIBM Websphere Edge Server 3.6/4.0 - Cross-Site Scripting Vulnerability

References