CVE-2003-1157

Currently unrated

Key Information:

Vendor: Citrix
Status: Metaframe
Vendor: CVE Published:; 31 December 2003

Summary

Cross-site scripting (XSS) vulnerability in login.asp in Citrix MetaFrame XP Server 1.0 allows remote attackers to inject arbitrary web script or HTML via the NFuse_Message parameter.

References

http://secunia.com/advisories/10127

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/8939

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/343040

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability Reserved
May 4, 2005
Vulnerability published
Dec 31, 2003