CVE-2001-0897

Published: Nov 15, 2001Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:P/I:N/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Cross-site scripting vulnerability in Infopop Ultimate Bulletin Board (UBB) before 5.47e allows remote attackers to steal user cookies via an [IMG] tag that references an about: URL with an onerror field.

Affected (110)

Products: Infopop: Ultimate Bulletin Board

Infopop

1 product

Ultimate Bulletin Board

Configuration A

110 vulnerable

Vulnerable Software	Affected Versions
Infopop Ultimate Bulletin Board	All versions
Infopop Ultimate Bulletin Board	Version 1.0
Infopop Ultimate Bulletin Board	Version 2.01
Infopop Ultimate Bulletin Board	Version 2.02
Infopop Ultimate Bulletin Board	Version 2.03
Infopop Ultimate Bulletin Board	Version 2.04
Infopop Ultimate Bulletin Board	Version 2.05
Infopop Ultimate Bulletin Board	Version 2.0
Infopop Ultimate Bulletin Board	Version 2.10
Infopop Ultimate Bulletin Board	Version 2.11
Infopop Ultimate Bulletin Board	Version 3.01
Infopop Ultimate Bulletin Board	Version 3.02
Infopop Ultimate Bulletin Board	Version 3.0
Infopop Ultimate Bulletin Board	Version 3.5
Infopop Ultimate Bulletin Board	Version 3.6
Infopop Ultimate Bulletin Board	Version 3.75
Infopop Ultimate Bulletin Board	Version 3.7
Infopop Ultimate Bulletin Board	Version 4.01
Infopop Ultimate Bulletin Board	Version 4.02
Infopop Ultimate Bulletin Board	Version 4.03
Infopop Ultimate Bulletin Board	Version 4.04
Infopop Ultimate Bulletin Board	Version 4.05
Infopop Ultimate Bulletin Board	Version 4.06
Infopop Ultimate Bulletin Board	Version 4.07
Infopop Ultimate Bulletin Board	Version 4.0
Infopop Ultimate Bulletin Board	Version 4.50
Infopop Ultimate Bulletin Board	Version 4.51
Infopop Ultimate Bulletin Board	Version 4.52
Infopop Ultimate Bulletin Board	Version 4.53
Infopop Ultimate Bulletin Board	Version 4.75
Infopop Ultimate Bulletin Board	Version 4.80
Infopop Ultimate Bulletin Board	Version 4.81
Infopop Ultimate Bulletin Board	Version 4.82
Infopop Ultimate Bulletin Board	Version 4.83
Infopop Ultimate Bulletin Board	Version 4.84
Infopop Ultimate Bulletin Board	Version 4.85
Infopop Ultimate Bulletin Board	Version 4.86
Infopop Ultimate Bulletin Board	Version 5.00
Infopop Ultimate Bulletin Board	Version 5.01
Infopop Ultimate Bulletin Board	Version 5.02
Infopop Ultimate Bulletin Board	Version 5.05
Infopop Ultimate Bulletin Board	Version 5.05 a
Infopop Ultimate Bulletin Board	Version 5.06
Infopop Ultimate Bulletin Board	Version 5.06 a
Infopop Ultimate Bulletin Board	Version 5.07
Infopop Ultimate Bulletin Board	Version 5.08
Infopop Ultimate Bulletin Board	Version 5.09
Infopop Ultimate Bulletin Board	Version 5.10
Infopop Ultimate Bulletin Board	Version 5.11
Infopop Ultimate Bulletin Board	Version 5.12
Infopop Ultimate Bulletin Board	Version 5.13
Infopop Ultimate Bulletin Board	Version 5.14
Infopop Ultimate Bulletin Board	Version 5.15
Infopop Ultimate Bulletin Board	Version 5.16
Infopop Ultimate Bulletin Board	Version 5.17
Infopop Ultimate Bulletin Board	Version 5.18
Infopop Ultimate Bulletin Board	Version 5.19
Infopop Ultimate Bulletin Board	Version 5.20
Infopop Ultimate Bulletin Board	Version 5.25
Infopop Ultimate Bulletin Board	Version 5.26
Infopop Ultimate Bulletin Board	Version 5.27
Infopop Ultimate Bulletin Board	Version 5.28
Infopop Ultimate Bulletin Board	Version 5.29
Infopop Ultimate Bulletin Board	Version 5.29 a
Infopop Ultimate Bulletin Board	Version 5.29 b
Infopop Ultimate Bulletin Board	Version 5.30
Infopop Ultimate Bulletin Board	Version 5.30 a
Infopop Ultimate Bulletin Board	Version 5.31
Infopop Ultimate Bulletin Board	Version 5.32
Infopop Ultimate Bulletin Board	Version 5.33
Infopop Ultimate Bulletin Board	Version 5.34
Infopop Ultimate Bulletin Board	Version 5.34 a
Infopop Ultimate Bulletin Board	Version 5.35
Infopop Ultimate Bulletin Board	Version 5.36
Infopop Ultimate Bulletin Board	Version 5.36 a
Infopop Ultimate Bulletin Board	Version 5.37
Infopop Ultimate Bulletin Board	Version 5.38
Infopop Ultimate Bulletin Board	Version 5.38 a
Infopop Ultimate Bulletin Board	Version 5.38 b
Infopop Ultimate Bulletin Board	Version 5.38 c
Infopop Ultimate Bulletin Board	Version 5.38 d
Infopop Ultimate Bulletin Board	Version 5.39
Infopop Ultimate Bulletin Board	Version 5.39 a
Infopop Ultimate Bulletin Board	Version 5.39 b
Infopop Ultimate Bulletin Board	Version 5.39 c
Infopop Ultimate Bulletin Board	Version 5.40
Infopop Ultimate Bulletin Board	Version 5.41
Infopop Ultimate Bulletin Board	Version 5.41 a
Infopop Ultimate Bulletin Board	Version 5.41 b
Infopop Ultimate Bulletin Board	Version 5.42
Infopop Ultimate Bulletin Board	Version 5.42 a
Infopop Ultimate Bulletin Board	Version 5.43
Infopop Ultimate Bulletin Board	Version 5.43 a
Infopop Ultimate Bulletin Board	Version 5.43 b
Infopop Ultimate Bulletin Board	Version 5.43 c
Infopop Ultimate Bulletin Board	Version 5.43 d
Infopop Ultimate Bulletin Board	Version 5.44
Infopop Ultimate Bulletin Board	Version 5.44 a
Infopop Ultimate Bulletin Board	Version 5.44 b
Infopop Ultimate Bulletin Board	Version 5.45
Infopop Ultimate Bulletin Board	Version 5.45 a
Infopop Ultimate Bulletin Board	Version 5.45 b
Infopop Ultimate Bulletin Board	Version 5.45 c
Infopop Ultimate Bulletin Board	Version 5.46
Infopop Ultimate Bulletin Board	Version 5.46 a
Infopop Ultimate Bulletin Board	Version 5.47
Infopop Ultimate Bulletin Board	Version 5.47 a
Infopop Ultimate Bulletin Board	Version 5.47 b
Infopop Ultimate Bulletin Board	Version 5.47 c
Infopop Ultimate Bulletin Board	Version 5.47 d

References (4)

http://marc.info/?l=bugtraq&m=100586033530341&w=2

Source: cve@mitre.org

Mailing List

http://marc.info/?l=bugtraq&m=100586541317940&w=2

Source: cve@mitre.org

Mailing List

http://marc.info/?l=bugtraq&m=100586033530341&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

http://marc.info/?l=bugtraq&m=100586541317940&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

Mailing List

Timeline

No history available yet.