Vulnerabilities > CVE-2002-1785 - Cross-Site Scripting vulnerability in Zeus Web Server Admin Interface
Attack vector
LOCAL Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Zeus Administration Server in Zeus Web Server 4.0 through 4.1r2 allows remote authenticated users to inject arbitrary web script or HTML via the section parameter to index.fcgi.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |
Exploit-Db
description | Zeus Web Server 4.0/4.1 Admin Interface Cross Site Scripting Vulnerability. CVE-2002-1785. Remote exploit for cgi platform |
id | EDB-ID:22000 |
last seen | 2016-02-02 |
modified | 2002-11-08 |
published | 2002-11-08 |
reporter | euronymous |
source | https://www.exploit-db.com/download/22000/ |
title | Zeus Web Server 4.0/4.1 Admin Interface Cross-Site Scripting Vulnerability |