Lucene search

[email protected]NVD:CVE-2003-0044

HistoryFeb 07, 2003 - 5:00 a.m.

CVE-2003-0044

2003-02-0705:00:00

[email protected]

web.nvd.nist.gov

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.8

Confidence

High

EPSS

0.922

Percentile

99.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the (1) examples and (2) ROOT web applications for Jakarta Tomcat 3.x through 3.3.1a allow remote attackers to insert arbitrary web script or HTML.

Affected configurations

NVD

Node

apachetomcatMatch3.0

apachetomcatMatch3.1

apachetomcatMatch3.1.1

apachetomcatMatch3.2

apachetomcatMatch3.2.1

apachetomcatMatch3.2.3

apachetomcatMatch3.2.4

apachetomcatMatch3.3

apachetomcatMatch3.3.1

apachetomcatMatch3.3.1a

References

jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/

jakarta.apache.org/builds/jakarta-tomcat/release/v3.3.1a/RELEASE-NOTES-3.3.1a.txt

secunia.com/advisories/7972

www.ciac.org/ciac/bulletins/n-060.shtml

www.debian.org/security/2003/dsa-246

www.osvdb.org/9203

www.osvdb.org/9204

www.securityfocus.com/advisories/5111

www.securityfocus.com/bid/6720

exchange.xforce.ibmcloud.com/vulnerabilities/11196

CVSS2

6.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

AI Score

5.8

Confidence

High

EPSS

0.922

Percentile

99.0%

JSON

Related for NVD:CVE-2003-0044

tomcat1 cvelist1 osv2 cve1 github1 nessus2 openvas4 debian2