Test ID:	1.3.6.1.4.1.25623.1.0.10816
Category:	Gain a shell remotely
Title:	Webalizer Cross Site Scripting Vulnerability
Summary:	Webalizer have a cross-site scripting vulnerability,; that could allow malicious HTML tags to be injected in the reports generated by the Webalizer.
Description:	Summary: Webalizer have a cross-site scripting vulnerability, that could allow malicious HTML tags to be injected in the reports generated by the Webalizer. Solution: Upgrade to Version 2.01-09 and change the directory in 'OutputDir'. CVSS Score: 7.5 CVSS Vector: AV:N/AC:L/Au:N/C:P/I:P/A:P
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2001-0835 BugTraq ID: 3473 http://www.securityfocus.com/bid/3473 Bugtraq: 20011024 Cross-site Scripting Flaw in webalizer (Google Search) http://marc.info/?l=bugtraq&m=100394630702875&w=2 En Garde Linux Advisory: ESA-20011101-01 http://www.linuxsecurity.com/advisories/other_advisory-1677.html http://www.redhat.com/support/errata/RHSA-2001-140.html http://www.redhat.com/support/errata/RHSA-2001-141.html SuSE Security Announcement: SuSE-SA:2001:040 (Google Search) http://lists.suse.com/archives/suse-security-announce/2001-Nov/0001.html XForce ISS Database: webalizer-html-tag-host(7350) https://exchange.xforce.ibmcloud.com/vulnerabilities/7350 XForce ISS Database: webalizer-html-tags-keywords(7351) https://exchange.xforce.ibmcloud.com/vulnerabilities/7351
Copyright	Copyright (C) 2001 Alert4Web.com

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.