Skip to content
/ CVE-2002-0346 Public

Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.

License

GPL-3.0 license
0 stars 0 forks Branches Tags Activity
Star
Notifications

alt3kx/CVE-2002-0346

BranchesTags

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

5 Commits

CVE-2002-0346.txt

CVE-2002-0346.txt

 
 

LICENSE

LICENSE

 
 

README.md

README.md

 
 

Repository files navigation

CVE-2002-0346

Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.

Packetstorm publication at https://packetstormsecurity.com/files/25837/Colbalt-RAQ-v4.txt.html
SecurityFocus publication at https://www.securityfocus.com/bid/4211

Author

Alex Hernandez aka (@_alt3kx_)

Vendor Reponse:

The vendor was notified

Posted List^s Security cobalt:
cobalt-security@list.cobalt.com &
jlovell@sun.com
http://www.cobalt.com

Patch Temporary:

Delete files cgi^s from the system, or disable its possible execution.

About

Cross-site scripting vulnerability in Cobalt RAQ 4 allows remote attackers to execute arbitrary script as other Cobalt users via Javascript in a URL to (1) service.cgi or (2) alert.cgi.

Resources

Readme

License

GPL-3.0 license
Activity

Stars

0 stars

Watchers

3 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published