Vulnerabilities > CVE-2003-1311

CVSS 0.0 - NONE

Attack vector

UNKNOWN

Attack complexity

UNKNOWN

Privileges required

UNKNOWN

Confidentiality impact

UNKNOWN

Integrity impact

UNKNOWN

Availability impact

UNKNOWN

NVD

Published: 2003-12-31

Updated: 2024-11-20

Summary

siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter.

Vulnerable Configurations

Part	Description	Count
Application	Netegrity Netegrity Siteminder *	1

References

http://curl.haxx.se/mail/archive-2003-05/0172.html
http://curl.haxx.se/mail/archive-2003-05/0172.html
http://www.osvdb.org/30741
http://www.osvdb.org/30741

Vulnerabilities > CVE-2003-1311 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2003-1311"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2003-1311