CVE

Id
3630  
CVE No.
CVE-2001-0824  
Status
Candidate  
Description
Cross-site scripting vulnerability in IBM WebSphere 3.02 and 3.5 FP2 allows remote attackers to execute Javascript by inserting the Javascript into (1) a request for a .JSP file, or (2) a request to the webapp/examples/ directory, which inserts the Javascript into an error page.  
Phase
Proposed (20011122)  
Votes
ACCEPT(1) Baker | MODIFY(1) Frech | NOOP(6) Armstrong, Bishop, Christey, Cole, Foat, Wall  
Comments
Frech> XF:java-servlet-crosssite-scripting(6793) | This issue is associated with multiple operating | environments. | Christey> CERT-VN:VU#560659 | URL:http://www.kb.cert.org/vuls/id/560659 | MISC:http://www.kb.cert.org/vuls/id/JARL-4YZKLU  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
16068 3630 CVE-2001-0824 BUGTRAQ:20010702 Multiple Vendor Java Servlet Container Cross-Site Scripting Vulnerability  View
16069 3630 CVE-2001-0824 URL:http://archive.cert.uni-stuttgart.de/archive/bugtraq/2001/07/msg00021.html  View
16070 3630 CVE-2001-0824 BID:2969  View

Related JVN