CVE-2002-0238 : Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows re

Cross-site scripting vulnerability in web administration interface for NetGear RT314 and RT311 Gateway Routers allows remote attackers to execute arbitrary script on another client via a URL that contains the script.

Published 2002-05-29 04:00:00

Updated 2016-10-18 02:17:26

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Exploit prediction scoring system (EPSS) score for CVE-2002-0238

Probability of exploitation activity in the next 30 days: 0.87%

Percentile, the proportion of vulnerabilities that are scored at or less: ~ 80 % EPSS Score History EPSS FAQ

CVSS scores for CVE-2002-0238

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
7.5	HIGH	AV:N/AC:L/Au:N/C:P/I:P/A:P	10.0	6.4	NIST
Access Vector: Network Access Complexity: Low Authentication: None Confidentiality Impact: Partial Integrity Impact: Partial Availability Impact: Partial

References for CVE-2002-0238

http://www.iss.net/security_center/static/8082.php

Patch;Vendor Advisory
http://www.securityfocus.com/bid/4024
http://marc.info/?l=bugtraq&m=101286360203461&w=2

Products affected by CVE-2002-0238

Netgear » Rt314 » Version: 3.24
cpe:2.3:h:netgear:rt314:3.24:*:*:*:*:*:*:*
Matching versions
Netgear » Rt314 » Version: 3.25
cpe:2.3:h:netgear:rt314:3.25:*:*:*:*:*:*:*
Matching versions
Netgear » Rt314 » Version: 3.22
cpe:2.3:h:netgear:rt314:3.22:*:*:*:*:*:*:*
Matching versions

Vulnerability Details : CVE-2002-0238

Exploit prediction scoring system (EPSS) score for CVE-2002-0238

CVSS scores for CVE-2002-0238

References for CVE-2002-0238

Products affected by CVE-2002-0238