CVE-2001-0897 Information

Description

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.

Reference

http://marc.info/?l=bugtraq&m=100586033530341&w=2 http://marc.info/?l=bugtraq&m=100586541317940&w=2