Vulnerabilities > CVE-2003-0749 - Cross-Site Scripting vulnerability in SAP Internet Transaction Server 4620.2.0.323011
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the ~service parameter.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 Cross Site Scripting Vulnerability. CVE-2003-0749 . Remote exploits for multiple platform |
| id | EDB-ID:23071 |
| last seen | 2016-02-02 |
| modified | 2003-08-30 |
| published | 2003-08-30 |
| reporter | Martin Eiszner |
| source | https://www.exploit-db.com/download/23071/ |
| title | SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting Vulnerability |
Packetstorm
| data source | https://packetstormsecurity.com/files/download/66179/SAP-07-010.txt |
| id | PACKETSTORM:66179 |
| last seen | 2016-12-05 |
| published | 2008-05-09 |
| reporter | portcullis-security.com |
| source | https://packetstormsecurity.com/files/66179/SAP-07-010.txt.html |
| title | SAP-07-010.txt |