CVE-2003-0749

Description

Cross-site scripting (XSS) vulnerability in wgate.dll for SAP Internet Transaction Server (ITS) 4620.2.0.323011 allows remote attackers to insert arbitrary web script and steal cookies via the ~service parameter.

Affected products

• SAP / internet_transaction_server4620.2.0.323011 – 4620.2.0.323011

References

• MISChttp://archives.neohapsis.com/archives/bugtraq/2003-08/0361.html
• MISChttp://www.securityfocus.com/bid/8517