What is the severity of CVE-2002-1315?

CVE-2002-1315 is classified as a medium severity vulnerability due to the potential for cross-site scripting attacks.

How do I fix CVE-2002-1315?

To mitigate CVE-2002-1315, upgrade to a patched version of iPlanet Web Server 4.x or apply any available security updates.

What systems are affected by CVE-2002-1315?

CVE-2002-1315 affects iPlanet Web Server versions 4.1 up to SP11, including SP1 through SP10.

What impact does CVE-2002-1315 have on security?

CVE-2002-1315 can allow remote attackers to execute arbitrary scripts in the context of the iPlanet administration interface.

Can CVE-2002-1315 lead to privilege escalation?

Yes, CVE-2002-1315 may enable privilege escalation if exploited successfully through the XSS vulnerability.

Vulnerability/
CVE-2002-1315

medium

6.8

CWE

NVD-CWE-Other 79

21/11/2002

8/8/2024

CVE-2002-1315: XSS

First published: Thu Nov 21 2002(Updated: )

Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote attackers to execute web script or HTML as the iPlanet administrator by injecting the desired script into error logs, and possibly escalating privileges by using the XSS vulnerability in conjunction with another issue (CVE-2002-1316).

Credit: cve@mitre.org

Affected Software	Affected Version	How to fix
iPlanet Web Server	=4.1_sp8
iPlanet Web Server	=4.1
iPlanet Web Server	=4.1_sp11
iPlanet Web Server	=4.1_sp4
iPlanet Web Server	=4.1_sp2
iPlanet Web Server	=4.1_sp5
iPlanet Web Server	=4.1_sp1
iPlanet Web Server	=4.1_sp10
iPlanet Web Server	=4.1_sp7
iPlanet Web Server	=4.1_sp9
iPlanet Web Server	=4.1_sp6
iPlanet Web Server	=4.1_sp3

Never miss a vulnerability like this again

Reference Links

Frequently Asked Questions

What is the severity of CVE-2002-1315?
CVE-2002-1315 is classified as a medium severity vulnerability due to the potential for cross-site scripting attacks.
How do I fix CVE-2002-1315?
To mitigate CVE-2002-1315, upgrade to a patched version of iPlanet Web Server 4.x or apply any available security updates.
What systems are affected by CVE-2002-1315?
CVE-2002-1315 affects iPlanet Web Server versions 4.1 up to SP11, including SP1 through SP10.
What impact does CVE-2002-1315 have on security?
CVE-2002-1315 can allow remote attackers to execute arbitrary scripts in the context of the iPlanet administration interface.
Can CVE-2002-1315 lead to privilege escalation?
Yes, CVE-2002-1315 may enable privilege escalation if exploited successfully through the XSS vulnerability.

agent/references
agent/type
agent/softwarecombine
collector/mitre-cve
source/MITRE
agent/severity
agent/weakness
agent/last-modified-date
agent/author
agent/description
agent/first-publish-date
agent/event
agent/source
agent/tags
collector/nvd-historical
vendor/iplanet
product/iplanet web server
canonical/iplanet iplanet web server
agent/software-canonical-lookup-request
collector/nvd-index
canonical/iplanet web server
version/iplanet web server/4.1_sp8
version/iplanet web server/4.1
version/iplanet web server/4.1_sp11
version/iplanet web server/4.1_sp4
version/iplanet web server/4.1_sp2
version/iplanet web server/4.1_sp5
version/iplanet web server/4.1_sp1
version/iplanet web server/4.1_sp10
version/iplanet web server/4.1_sp7
version/iplanet web server/4.1_sp9
version/iplanet web server/4.1_sp6
version/iplanet web server/4.1_sp3

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co

By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.