CVE-2002-2192 Information

Description

Cross-site scripting (XSS) vulnerability in Perception LiteServe 2.0.1 allows remote attackers to execute arbitrary web script via (1) a Host: header when DNS wildcards are supported or (2) the query string in a \dir\ request to indexed folders.

Reference

http://archives.neohapsis.com/archives/vulnwatch/2002-q4/0063.html http://online.securityfocus.com/archive/1/298987 http://www.iss.net/security_center/static/10561.php http://www.securityfocus.com/bid/6131 http://www.securityfocus.com/bid/6143