ID de Prueba:	1.3.6.1.4.1.25623.1.0.10816
Categoría:	Gain a shell remotely
Título:	Webalizer Cross Site Scripting Vulnerability
Resumen:	Webalizer have a cross-site scripting vulnerability,; that could allow malicious HTML tags to be injected in the reports generated by the Webalizer.
Descripción:	Summary: Webalizer have a cross-site scripting vulnerability, that could allow malicious HTML tags to be injected in the reports generated by the Webalizer. Solution: Upgrade to Version 2.01-09 and change the directory in 'OutputDir'. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0835 BugTraq ID: 3473 http://www.securityfocus.com/bid/3473 Bugtraq: 20011024 Cross-site Scripting Flaw in webalizer (Google Search) http://marc.info/?l=bugtraq&m=100394630702875&w=2 En Garde Linux Advisory: ESA-20011101-01 http://www.linuxsecurity.com/advisories/other_advisory-1677.html http://www.redhat.com/support/errata/RHSA-2001-140.html http://www.redhat.com/support/errata/RHSA-2001-141.html SuSE Security Announcement: SuSE-SA:2001:040 (Google Search) http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html XForce ISS Database: webalizer-html-tag-host(7350) https://exchange.xforce.ibmcloud.com/vulnerabilities/7350 XForce ISS Database: webalizer-html-tags-keywords(7351) https://exchange.xforce.ibmcloud.com/vulnerabilities/7351
Copyright	Copyright (C) 2001 Alert4Web.com

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.