CVE-2002-1348

w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies.

CVSS v2.0 5.0 MEDIUM

5.0^/10

CVSS v2.0 : MEDIUM

Vector : AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability : 10.0 / Impact : 2.9

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact PARTIAL

Integrity Impact NONE

Availability Impact NONE

References

Link	Resource
http://sourceforge.net/project/shownotes.php?release_id=126233	Vendor Advisory
http://www.redhat.com/support/errata/RHSA-2003-044.html	Patch Vendor Advisory
http://www.iss.net/security_center/static/11266.php	Patch Vendor Advisory
http://www.debian.org/security/2003/dsa-249
http://www.debian.org/security/2003/dsa-250
http://www.debian.org/security/2003/dsa-251
http://www.redhat.com/support/errata/RHSA-2003-045.html
http://www.securityfocus.com/bid/6794
http://marc.info/?l=bugtraq&m=104552193927323&w=2

Advertisement

Configurations

Configuration 1 (hide)

OR	cpe:2.3:a:w3m:w3m:0.2.1:::::::*
	cpe:2.3:a:w3m:w3m:0.2.2:::::::*
	cpe:2.3:a:w3m:w3m:0.3.2:::::::*
	cpe:2.3:a:w3m:w3m:0.3.2.1:::::::*
	cpe:2.3:a:w3m:w3m:0.3.2.2:::::::*
	cpe:2.3:a:w3m:w3m:0.2.5:::::::*
	cpe:2.3:a:w3m:w3m:0.2.5.1:::::::*
	cpe:2.3:a:w3m:w3m:0.2.3:::::::*
	cpe:2.3:a:w3m:w3m:0.2.4:::::::*
	cpe:2.3:a:w3m:w3m:0.2:::::::*
	cpe:2.3:a:w3m:w3m:0.3:::::::*
	cpe:2.3:a:w3m:w3m:0.3.1:::::::*

Information

Published : 2003-02-18 21:00

Updated : 2016-10-17 19:26

NVD link : CVE-2002-1348

Mitre link : CVE-2002-1348

JSON object : View

CWE

NVD-CWE-Other

Advertisement

Products Affected

w3m

w3m

{"cve": {"data_type": "CVE", "references": {"reference_data": [{"url": "http://sourceforge.net/project/shownotes.php?release_id=126233", "name": "http://sourceforge.net/project/shownotes.php?release_id=126233", "tags": ["Vendor Advisory"], "refsource": "CONFIRM"}, {"url": "http://www.redhat.com/support/errata/RHSA-2003-044.html", "name": "RHSA-2003:044", "tags": ["Patch", "Vendor Advisory"], "refsource": "REDHAT"}, {"url": "http://www.iss.net/security_center/static/11266.php", "name": "w3m-img-alt-xss(11266)", "tags": ["Patch", "Vendor Advisory"], "refsource": "XF"}, {"url": "http://www.debian.org/security/2003/dsa-249", "name": "DSA-249", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2003/dsa-250", "name": "DSA-250", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.debian.org/security/2003/dsa-251", "name": "DSA-251", "tags": [], "refsource": "DEBIAN"}, {"url": "http://www.redhat.com/support/errata/RHSA-2003-045.html", "name": "RHSA-2003:045", "tags": [], "refsource": "REDHAT"}, {"url": "http://www.securityfocus.com/bid/6794", "name": "6794", "tags": [], "refsource": "BID"}, {"url": "http://marc.info/?l=bugtraq&m=104552193927323&w=2", "name": "20030217 GLSA: w3m", "tags": [], "refsource": "BUGTRAQ"}]}, "data_format": "MITRE", "description": {"description_data": [{"lang": "en", "value": "w3m before 0.3.2.2 does not properly escape HTML tags in the ALT attribute of an IMG tag, which could allow remote attackers to access files or cookies."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "en", "value": "NVD-CWE-Other"}]}]}, "data_version": "4.0", "CVE_data_meta": {"ID": "CVE-2002-1348", "ASSIGNER": "cve@mitre.org"}}, "impact": {"baseMetricV2": {"cvssV2": {"version": "2.0", "baseScore": 5.0, "accessVector": "NETWORK", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "authentication": "NONE", "integrityImpact": "NONE", "accessComplexity": "LOW", "availabilityImpact": "NONE", "confidentialityImpact": "PARTIAL"}, "severity": "MEDIUM", "impactScore": 2.9, "obtainAllPrivilege": false, "exploitabilityScore": 10.0, "obtainUserPrivilege": false, "obtainOtherPrivilege": false, "userInteractionRequired": false}}, "publishedDate": "2003-02-19T05:00Z", "configurations": {"nodes": [{"children": [], "operator": "OR", "cpe_match": [{"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.3.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.3.2.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.3.2.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.5:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.5.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2.4:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.2:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.3:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}, {"cpe23Uri": "cpe:2.3:a:w3m:w3m:0.3.1:*:*:*:*:*:*:*", "cpe_name": [], "vulnerable": true}]}], "CVE_data_version": "4.0"}, "lastModifiedDate": "2016-10-18T02:26Z"}