PT-2010-2149 · Zeus · Zeus Web Server

Published

2010-01-20

Updated

2010-02-02

CVE-2010-0363

CVSS v2.0

2.6

Low

Vector

AV:N/AC:H/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Zeus Web Server versions prior to 4.3r5

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when SSL is enabled for the admin server.

Recommendations For Zeus Web Server versions prior to 4.3r5, update to version 4.3r5 or later to resolve the issue.

Fix

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2010-0363

Affected Products

Zeus Web Server

PT-2010-2149 · Zeus · Zeus Web Server

CVE-2010-0363

Weakness Enumeration

Related Identifiers

Affected Products

References · 3