Vulnerabilities > CVE-2003-0749 - Cross-Site Scripting vulnerability in SAP Internet Transaction Server 4620.2.0.323011
Attack vector
NETWORK Attack complexity
MEDIUM Privileges required
NONE Confidentiality impact
PARTIAL Integrity impact
PARTIAL Availability impact
PARTIAL Summary
Cross-site scripting (XSS) vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the ~service parameter.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 1 |
Exploit-Db
description | SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 Cross Site Scripting Vulnerability. CVE-2003-0749 . Remote exploits for multiple platform |
id | EDB-ID:23071 |
last seen | 2016-02-02 |
modified | 2003-08-30 |
published | 2003-08-30 |
reporter | Martin Eiszner |
source | https://www.exploit-db.com/download/23071/ |
title | SAP Internet Transaction Server 4620.2.0.323011 Build 46B.323011 - Cross-Site Scripting Vulnerability |
Packetstorm
data source | https://packetstormsecurity.com/files/download/66179/SAP-07-010.txt |
id | PACKETSTORM:66179 |
last seen | 2016-12-05 |
published | 2008-05-09 |
reporter | portcullis-security.com |
source | https://packetstormsecurity.com/files/66179/SAP-07-010.txt.html |
title | SAP-07-010.txt |