CVE-2003-0398 in Content Suiteinfo

Summary

Vignette StoryServer 4 and 5, and Vignette V/5 and V/6, with the SSI EXEC feature enabled, allows remote attackers to execute arbitrary code via a text variable to a Vignette Application that is later displayed.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

06/10/2003

Disclosure

07/02/2003

Moderation

VulDB entry created

Entries

1: VDB-20598

CPE

ready

CWE

CWE-269 (Confirmed)

CVSS

7.3

EPSS

0.01983

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2003-0398
NVD	https://nvd.nist.gov/vuln/detail/CVE-2003-0398
CVE Details	https://www.cvedetails.com/cve/CVE-2003-0398/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!