U.S. flag   An official website of the United States government
Dot gov

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Https

Secure .gov websites use HTTPS
A lock (Dot gov) or https:// means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.

Vulnerability Change Records for CVE-2003-5001

Change History

CVE Modified by IBM Corporation 11/06/2023 8:56:33 PM

Action Type Old Value New Value
Added CVSS V3.1

								
							
							
						
IBM Corporation AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N
Removed CVSS V3.1
VulDB AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

								
						
Added CWE

								
							
							
						
IBM Corporation CWE-269
Removed CWE
VulDB CWE-269

								
						
Changed Description
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability was found in ISS BlackICE PC Protection and classified as critical. Affected by this issue is the component Cross Site Scripting Detection. The manipulation as part of POST/PUT/DELETE/OPTIONS Request leads to privilege escalation. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.
A vulnerability was found in ISS BlackICE PC Protection and classified as critical. Affected by this issue is the component Cross Site Scripting Detection. The manipulation as part of POST/PUT/DELETE/OPTIONS Request leads to privilege escalation. The attack may be launched remotely. The exploit has been disclosed to the public and may be used. It is recommended to upgrade the affected component. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Added Reference

								
							
							
						
IBM Corporation http://www.cgisecurity.com/articles/xss-faq.shtml [No types assigned]
Added Reference

								
							
							
						
IBM Corporation http://www.computec.ch/mruef/advisories/black_ice_pc_protection_xss_evasion.txt [No types assigned]
Added Reference

								
							
							
						
IBM Corporation https://vuldb.com/?id.104 [No types assigned]
Removed Reference
VulDB http://www.cgisecurity.com/articles/xss-faq.shtml

								
						
Removed Reference
VulDB http://www.computec.ch/mruef/advisories/black_ice_pc_protection_xss_evasion.txt

								
						
Removed Reference
VulDB https://vuldb.com/?id.104

								
						

CVE Source Update by IBM Corporation 11/06/2023 8:56:33 PM

Action Type Old Value New Value
Changed Source
VulDB
IBM Corporation