CVE-2002-1335
CVE-2002-1335
Cross-site scripting (XSS) vulnerability in w3m 0.3.2 does not escape an HTML tag in a frame, which allows remote attackers to insert arbitrary web script or HTML and access files or cookies.
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
http://mi.med.tohoku.ac.jp/~satodai/w3m-dev-en/200211.month/838.htmlhttp://secunia.com/advisories/8015http://secunia.com/advisories/8016http://secunia.com/advisories/8031http://secunia.com/advisories/8053https://exchange.xforce.ibmcloud.com/vulnerabilities/10842http://sourceforge.net/project/shownotes.php?release_id=124484http://www.debian.org/security/2003/dsa-249http://www.debian.org/security/2003/dsa-250http://www.debian.org/security/2003/dsa-251http://www.openpkg.com/security/advisories/OpenPKG-SA-2003.009.htmlhttp://www.osvdb.org/6981