CVE

Id
7420  
CVE No.
CVE-2003-0593  
Status
Candidate  
Description
Opera allows remote attackers to bypass intended cookie access restrictions on a web application via "%2e%2e" (encoded dot dot) directory traversal sequences in a URL, which causes Opera to send the cookie outside the specified URL subsets, e.g. to a vulnerable application that runs on the same server as the target application.  
Phase
Proposed (20040318)  
Votes
ACCEPT(4) Armstrong, Baker, Balinsky, Cole | MODIFY(1) Frech | NOOP(1) Cox | REVIEWING(2) Christey, Wall  
Comments
Frech> XF:web-browser-cookie-bypass(15424) | http://xforce.iss.net/xforce/xfdb/15424 | Christey> Consider whether this is really a design-level problem that applies to | the interaction between any vulnerable XSS, its associated domain, and | any web browser, because browsers enforce security boundaries at the | domain level. If so, then the "%2e%2e" problem may be a red herring, | or a single attack vector of any number of vectors. | | CVE-2003-0513, CVE-2003-0514, CVE-2003-0592, CVE-2003-0593, | and CVE-2003-0594 all cover this specific issue (each for a | different browser).  

Actions

Related CVE References

Id CVE Id CVE No. Reference Actions
43559 7420 CVE-2003-0593 FULLDISC:20040310 Corsaire Security Advisory: Multiple vendor HTTP user agent cookie path traversal issue  View
43560 7420 CVE-2003-0593 URL:http://lists.grok.org.uk/pipermail/full-disclosure/2004-March/018475.html  View
43561 7420 CVE-2003-0593 VULNWATCH:20040310 Corsaire Security Advisory: Multiple vendor HTTP user agent cookie path traversal issue  View

Related JVN

Id JVN No. Title Summary CVE No. CVE Id CVSS_v2 CVSS_v3 JVN URL Actions
62734 JVNDB-2004-000075 Mozilla における cookie のアクセス制御を回避される脆弱性 ------------ CVE-2003-0594 7420 7.5 http://jvndb.jvn.jp/ja/contents/2004/JVNDB-2004-000075.html  View