VYPR

Sitespring

by Macromedia

CVEs (2)

  • CVE-2002-1027Oct 4, 2002
    risk 0.03cvss epss 0.03

    Cross-site scripting vulnerability in the default HTTP 500 error script (500error.jsp) for Macromedia Sitespring 1.2.0 (277.1) allows remote attackers to execute arbitrary web script via a link to 500error.jsp with the script in 1the et parameter.

  • CVE-2002-1026Oct 4, 2002
    risk 0.00cvss epss 0.03

    Macromedia Sitespring 1.2.0 (277.1) using Sybase runtime engine 7.0.2.1480 allows remote attackers to cause a denial of service (crash) via a long malformed request to TCP port 2500, possibly triggering a buffer overflow.