CVE-2003-1149
Symantec Norton Internet Security 2003 6.0.4.34 - Cross-Site Scripting via Blocked Site Error Page
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2003-1149. PoCs published by KrazySnake.
AI-analyzed exploit summary The exploit describes a cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003. The issue arises when the software blocks a restricted website and returns an unsanitized error message containing the requested URL, allowing script execution in the user's browser context.
Description
Cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003 6.0.4.34 allows remote attackers to inject arbitrary web script or HTML via a URL to a blocked site, which is displayed on the blocked sites error page.
Exploits (1)
The exploit describes a cross-site scripting (XSS) vulnerability in Symantec Norton Internet Security 2003. The issue arises when the software blocks a restricted website and returns an unsanitized error message containing the requested URL, allowing script execution in the user's browser context.