Lucene search

[email protected]CVE-2003-1149

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2003-1149

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2003-1149

xss

symantec

norton internet security

security vulnerability

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.4%

JSON

Cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003 6.0.4.34 allows remote attackers to inject arbitrary web script or HTML via a URL to a blocked site, which is displayed on the blocked sites error page.

Affected configurations

NVD

Node

symantecnorton_internet_securityMatch2003_6.0.4.34

CPENameOperatorVersion
symantec:norton_internet_securitysymantec norton internet securityeq2003_6.0.4.34

CPE	Name	Operator	Version
symantec:norton_internet_security	symantec norton internet security	eq	2003_6.0.4.34

References

secunia.com/advisories/10067

securityresponse.symantec.com/avcenter/security/Content/2003.10.27.html

www.osvdb.org/2714

www.securityfocus.com/archive/1/342548

www.securityfocus.com/bid/8904

exchange.xforce.ibmcloud.com/vulnerabilities/13528

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

57.4%

JSON

Related for CVE-2003-1149

nvd1 cvelist1