Search
Find a vulnerability
Search criteria
ⓘ
Use this form to refine search results.
Full-text search supports keyword queries with ranking and filtering.
You can combine vendor, product, and sources to narrow results.
Enable “Apply ordering” to sort by date instead of relevance.
4 vulnerabilities by bradford_barrett
CVE-2002-0180 (GCVE-0-2002-0180)
Vulnerability from nvd – Published: 2002-04-18 04:00 – Updated: 2024-08-08 02:42
VLAI
Summary
Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://marc.info/?l=bugtraq&m=101888467527673&w=2 | mailing-listx_refsource_BUGTRAQ |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.mrunix.net/webalizer/news.html | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/4504 | vdb-entryx_refsource_BID |
| http://www.kb.cert.org/vuls/id/582923 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2002-04-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:42:27.767Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/582923"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-04-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/582923"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0180",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"name": "http://www.mrunix.net/webalizer/news.html",
"refsource": "CONFIRM",
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/582923"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0180",
"datePublished": "2002-04-18T04:00:00.000Z",
"dateReserved": "2002-04-17T00:00:00.000Z",
"dateUpdated": "2024-08-08T02:42:27.767Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0835 (GCVE-0-2001-0835)
Vulnerability from nvd – Published: 2001-11-22 05:00 – Updated: 2024-08-08 04:37
VLAI
Summary
Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
9 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/3473 | vdb-entryx_refsource_BID |
| http://www.mrunix.net/webalizer/news.html | x_refsource_CONFIRM |
| http://www.redhat.com/support/errata/RHSA-2001-141.html | vendor-advisoryx_refsource_REDHAT |
| http://lists.suse.com/archives/suse-security-anno… | vendor-advisoryx_refsource_SUSE |
| http://www.linuxsecurity.com/advisories/other_adv… | vendor-advisoryx_refsource_ENGARDE |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.redhat.com/support/errata/RHSA-2001-140.html | vendor-advisoryx_refsource_REDHAT |
| http://marc.info/?l=bugtraq&m=100394630702875&w=2 | mailing-listx_refsource_BUGTRAQ |
Date Public
2001-10-24 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:37:07.050Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "3473",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/3473"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"tags": [
"vendor-advisory",
"x_refsource_ENGARDE",
"x_transferred"
],
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-10-24T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T21:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "3473",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/3473"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"tags": [
"vendor-advisory",
"x_refsource_ENGARDE"
],
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0835",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "3473",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/3473"
},
{
"name": "http://www.mrunix.net/webalizer/news.html",
"refsource": "CONFIRM",
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"refsource": "SUSE",
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"refsource": "ENGARDE",
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0835",
"datePublished": "2001-11-22T05:00:00.000Z",
"dateReserved": "2001-11-22T00:00:00.000Z",
"dateUpdated": "2024-08-08T04:37:07.050Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2002-0180 (GCVE-0-2002-0180)
Vulnerability from cvelistv5 – Published: 2002-04-18 04:00 – Updated: 2024-08-08 02:42
VLAI
Summary
Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
5 references
| URL | Tags |
|---|---|
| http://marc.info/?l=bugtraq&m=101888467527673&w=2 | mailing-listx_refsource_BUGTRAQ |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.mrunix.net/webalizer/news.html | x_refsource_CONFIRM |
| http://www.securityfocus.com/bid/4504 | vdb-entryx_refsource_BID |
| http://www.kb.cert.org/vuls/id/582923 | third-party-advisoryx_refsource_CERT-VN |
Date Public
2002-04-15 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T02:42:27.767Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN",
"x_transferred"
],
"url": "http://www.kb.cert.org/vuls/id/582923"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2002-04-15T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-07-10T14:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"tags": [
"third-party-advisory",
"x_refsource_CERT-VN"
],
"url": "http://www.kb.cert.org/vuls/id/582923"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2002-0180",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Buffer overflow in Webalizer 2.01-06, when configured to use reverse DNS lookups, allows remote attackers to execute arbitrary code by connecting to the monitored web server from an IP address that resolves to a long hostname."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "20020415 Remote buffer overflow in Webalizer",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=101888467527673\u0026w=2"
},
{
"name": "webalizer-reverse-dns-bo(8837)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/8837"
},
{
"name": "http://www.mrunix.net/webalizer/news.html",
"refsource": "CONFIRM",
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "4504",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/4504"
},
{
"name": "VU#582923",
"refsource": "CERT-VN",
"url": "http://www.kb.cert.org/vuls/id/582923"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2002-0180",
"datePublished": "2002-04-18T04:00:00.000Z",
"dateReserved": "2002-04-17T00:00:00.000Z",
"dateUpdated": "2024-08-08T02:42:27.767Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2001-0835 (GCVE-0-2001-0835)
Vulnerability from cvelistv5 – Published: 2001-11-22 05:00 – Updated: 2024-08-08 04:37
VLAI
Summary
Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
9 references
| URL | Tags |
|---|---|
| http://www.securityfocus.com/bid/3473 | vdb-entryx_refsource_BID |
| http://www.mrunix.net/webalizer/news.html | x_refsource_CONFIRM |
| http://www.redhat.com/support/errata/RHSA-2001-141.html | vendor-advisoryx_refsource_REDHAT |
| http://lists.suse.com/archives/suse-security-anno… | vendor-advisoryx_refsource_SUSE |
| http://www.linuxsecurity.com/advisories/other_adv… | vendor-advisoryx_refsource_ENGARDE |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| https://exchange.xforce.ibmcloud.com/vulnerabilit… | vdb-entryx_refsource_XF |
| http://www.redhat.com/support/errata/RHSA-2001-140.html | vendor-advisoryx_refsource_REDHAT |
| http://marc.info/?l=bugtraq&m=100394630702875&w=2 | mailing-listx_refsource_BUGTRAQ |
Date Public
2001-10-24 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-08T04:37:07.050Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "3473",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/3473"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"tags": [
"vendor-advisory",
"x_refsource_SUSE",
"x_transferred"
],
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"tags": [
"vendor-advisory",
"x_refsource_ENGARDE",
"x_transferred"
],
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"tags": [
"vdb-entry",
"x_refsource_XF",
"x_transferred"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ",
"x_transferred"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2001-10-24T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2017-12-18T21:57:01.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "3473",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/3473"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"tags": [
"vendor-advisory",
"x_refsource_SUSE"
],
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"tags": [
"vendor-advisory",
"x_refsource_ENGARDE"
],
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"tags": [
"vdb-entry",
"x_refsource_XF"
],
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"tags": [
"mailing-list",
"x_refsource_BUGTRAQ"
],
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2001-0835",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cross-site scripting vulnerability in Webalizer 2.01-06, and possibly other versions, allows remote attackers to inject arbitrary HTML tags by specifying them in (1) search keywords embedded in HTTP referrer information, or (2) host names that are retrieved via a reverse DNS lookup."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "3473",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/3473"
},
{
"name": "http://www.mrunix.net/webalizer/news.html",
"refsource": "CONFIRM",
"url": "http://www.mrunix.net/webalizer/news.html"
},
{
"name": "RHSA-2001:141",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2001-141.html"
},
{
"name": "SuSE-SA:2001:040",
"refsource": "SUSE",
"url": "http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html"
},
{
"name": "ESA-20011101-01",
"refsource": "ENGARDE",
"url": "http://www.linuxsecurity.com/advisories/other_advisory-1677.html"
},
{
"name": "webalizer-html-tags-keywords(7351)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7351"
},
{
"name": "webalizer-html-tag-host(7350)",
"refsource": "XF",
"url": "https://exchange.xforce.ibmcloud.com/vulnerabilities/7350"
},
{
"name": "RHSA-2001:140",
"refsource": "REDHAT",
"url": "http://www.redhat.com/support/errata/RHSA-2001-140.html"
},
{
"name": "20011024 Cross-site Scripting Flaw in webalizer",
"refsource": "BUGTRAQ",
"url": "http://marc.info/?l=bugtraq\u0026m=100394630702875\u0026w=2"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2001-0835",
"datePublished": "2001-11-22T05:00:00.000Z",
"dateReserved": "2001-11-22T00:00:00.000Z",
"dateUpdated": "2024-08-08T04:37:07.050Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}