CVE-2002-1060: XSS
First published: Fri Oct 04 2002(Updated: )
Cross-site scripting (XSS) vulnerability in Blue Coat Systems (formerly CacheFlow) CacheOS on Client Accelerator 4.1.06, Security Gateway 2.1.02, and Server Accelerator 4.1.06 allows remote attackers to inject arbitrary web script or HTML via a URL to a nonexistent hostname that includes the HTML, which is inserted into the resulting error page.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Bluecoat Cacheos | =4.0.11 | |
| Bluecoat Cacheos | =4.0.14 | |
| Bluecoat Cacheos | =3.1.19 | |
| Bluecoat Cacheos | =4.0 | |
| Bluecoat Cacheos | =3.1.18 | |
| Bluecoat Cacheos | =4.0.12 | |
| Bluecoat Cacheos | =4.0.13 | |
| Bluecoat Cacheos | =3.1.21 | |
| Bluecoat Cacheos | =4.1.6 | |
| Bluecoat Cacheos | =3.1.17 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- collector/nvd-historical
- collector/nvd-index
- agent/weakness
- agent/severity
- agent/references
- agent/author
- agent/description
- agent/type
- agent/event
- agent/first-publish-date
- agent/softwarecombine
- agent/remedy
- agent/last-modified-date
- agent/tags
- collector/mitre-cve
- source/MITRE
- vendor/bluecoat
- canonical/bluecoat cacheos
- version/bluecoat cacheos/4.0.11
- version/bluecoat cacheos/4.0.14
- version/bluecoat cacheos/3.1.19
- version/bluecoat cacheos/4.0
- version/bluecoat cacheos/3.1.18
- version/bluecoat cacheos/4.0.12
- version/bluecoat cacheos/4.0.13
- version/bluecoat cacheos/3.1.21
- version/bluecoat cacheos/4.1.6
- version/bluecoat cacheos/3.1.17