Vulnerabilities > CVE-2004-2096 - Unspecified vulnerability in Mephistoles Internet Suite Mephistoles Httpd 0.6Final/0.6P1/0.6P2
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN mephistoles-internet-suite
exploit available
Summary
Cross-site scripting (XSS) vulnerability in Mephistoles httpd 0.6.0 final allows remote attackers to execute arbitrary script as other users by injecting arbitrary HTML or script into the URL.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 3 |
Exploit-Db
| description | Mephistoles HTTPD 0.6 Cross-Site Scripting Vulnerability. CVE-2004-2096 . Remote exploits for multiple platform |
| id | EDB-ID:23564 |
| last seen | 2016-02-02 |
| modified | 2004-01-21 |
| published | 2004-01-21 |
| reporter | Donato Ferrante |
| source | https://www.exploit-db.com/download/23564/ |
| title | Mephistoles HTTPD 0.6 - Cross-Site Scripting Vulnerability |
References
- http://marc.info/?l=bugtraq&m=107470433714179&w=2
- http://marc.info/?l=bugtraq&m=107470433714179&w=2
- http://secunia.com/advisories/10693
- http://secunia.com/advisories/10693
- http://www.osvdb.org/3689
- http://www.osvdb.org/3689
- http://www.securityfocus.com/bid/9470
- http://www.securityfocus.com/bid/9470
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14899
- https://exchange.xforce.ibmcloud.com/vulnerabilities/14899