MOABI : Continuous Software Improvement

CVE-2003-1311
Description	siteminderagent/SmMakeCookie.ccc in Netegrity SiteMinder does not ensure that the TARGET parameter names a valid redirection resource, which allows remote attackers to construct a URL that might trick users into visiting an arbitrary web site referenced by this parameter.
Impact	CVSS v2 : 6.8 MEDIUM
Type	NVD-CWE-Other
Attack Vector	CVSSv2 Vector : AV:N/AC:M/Au:N/C:P/I:P/A:P
Quick links	CVE, NVD, CERT, Metasploit, Exploit-db, Fulldisc, Bugtraq, Microsoft, Red Hat, Debian, GitHub code/issues, Google
References	http://curl.haxx.se/mail/archive-2003-05/0172.html http://www.osvdb.org/30741