• News
• Infocus
• Foundations
• Microsoft
• Unix
• IDS
• Incidents
• Virus
• Pen-Test
• Firewalls
• Columnists
• Mailing Lists
• Newsletters
• Bugtraq
• Focus on IDS
• Focus on Linux
• Focus on Microsoft
• Forensics
• Pen-test
• Security Basics
• Vuln Dev
• Vulnerabilities
• Jobs
• Job Opportunities
• Resumes
• Job Seekers
• Employers
• Tools
• RSS
• News
• Vulns
• Security Research

• info
• discussion
• exploit
• solution
• references

Zeus Web Server Admin Interface VS_Diag.CGI Cross Site Scripting Vulnerability

Bugtraq ID:	7751
Class:	Input Validation Error
CVE:
Remote:	Yes
Local:	No
Published:	May 29 2003 12:00AM
Updated:	May 29 2003 12:00AM
Credit:	Discovery of this vulnerability credited to Hugo "Vázquez" "Caramés" <overclocking_a_la_abuela@hotmail.com>.
Vulnerable:	Zeus Technologies Zeus Web Server 4.2 r2 Zeus Technologies Zeus Web Server 4.2 Zeus Technologies Zeus Web Server 4.1 r5 Zeus Technologies Zeus Web Server 4.1 r4 Zeus Technologies Zeus Web Server 4.1 r3 Zeus Technologies Zeus Web Server 4.1 r2 Zeus Technologies Zeus Web Server 4.1 r1 Zeus Technologies Zeus Web Server 4.1 Zeus Technologies Zeus Web Server 4.0
Not Vulnerable: