Vulnerabilities > CVE-2002-2192 - Cross-Site Scripting vulnerability in Perception Liteserve 2.0.1
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
NONE Integrity impact
PARTIAL Availability impact
NONE Summary
Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a "dir" request to indexed folders. This vulnerability is limited to server configurations with Wildcard DNS enabled.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description Perception LiteServe 2.0.1 DNS Wildcard Cross Site Scripting Vulnerability. CVE-2002-2192. Remote exploit for windows platform id EDB-ID:21997 last seen 2016-02-02 modified 2002-11-08 published 2002-11-08 reporter Matthew Murphy source https://www.exploit-db.com/download/21997/ title Perception LiteServe 2.0.1 DNS Wildcard Cross-Site Scripting Vulnerability description Perception LiteServe 2.0.1 Directory Query String Cross Site Scripting Vulnerability. CVE-2002-2192. Remote exploit for windows platform id EDB-ID:21999 last seen 2016-02-02 modified 2002-11-08 published 2002-11-08 reporter Matthew Murphy source https://www.exploit-db.com/download/21999/ title Perception LiteServe 2.0.1 - Directory Query String Cross-Site Scripting Vulnerability