Macromedia Sitespring : Security vulnerabilities, CVEs

Copy

CVE-2002-1027

Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter.

Max CVSS

7.5

EPSS Score

2.39%

Published

2002-10-04

Updated

2008-09-05

CVE-2002-1026

Macromedia Sitespring 1.2.0 (277.1) using Sybase runtime engine 7.0.2.1480 allows remote attackers to cause a denial of service (crash) via a long malformed request to TCP port 2500, possibly triggering a buffer overflow.

Max CVSS

5.0

EPSS Score

1.17%

Published

2002-10-04

Updated

2008-09-05

2 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!