https://www.exploit-db.com/exploits/23304
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200310-078

NortonInternetSecurity是一款Symantec公司开发和维护的网络防护系统，其核心是独立的NortonPersonalFirewall2003。NortonInternetSecurity没有过滤返回给用户的错误消息，远程攻击者可以利用这个漏洞进行跨站脚本攻击，可能获得用户敏感消息。当NortonInternetSecurity2003拦截某个WEB站点时，会返回WEB页面到浏览器，声明此站点已经被拦截，这个错误消息包含所请求的URL信息。NortonInternetSecurity2003在返回错误消息前没有充分过滤URL编码信息，这允许攻击者提供包含恶意脚本的URL，就可以导致脚本以被阻拦站点上下文运行。可能获得用户敏感信息。

source: http://www.securityfocus.com/bid/8904/info

It has been reported that Symantec Norton Internet Security is prone to a cross-site scripting vulnerability. The issue is reported to exist when the software blocks a restricted website and an error message containing the requested URL is returned to the user. This URL is not sanitized for malicious input therefore allowing a remote attacker to execute HTML or script code in the browser of a user running the vulnerable software. The script code would run in the context of the blocked site.

Successful exploitation of this attack may allow an attacker to steal cookie-based authentication information that could be used to launch further attacks.

Norton Internet Security 2003 v6.0.4.34 has been reported to be prone to this issue, however other versions may be affected as well.

http://www.example.com/page.cgi?<SCRIPT>alert(document.domain)</SCRIPT>

来源:BID
名称:8904
链接:http://www.securityfocus.com/bid/8904
来源:OSVDB
名称:2714
链接:http://www.osvdb.org/2714
来源:XF
名称:norton-is-blocked-xss(13528)
链接:http://xforce.iss.net/xforce/xfdb/13528
来源:BUGTRAQ
名称:20031027NortonInternetSecurity2003XSS
链接:http://www.securityfocus.com/archive/1/342548
来源:securityresponse.symantec.com
链接:http://securityresponse.symantec.com/avcenter/security/Content/2003.10.27.html
来源:SECUNIA
名称:10067
链接:http://secunia.com/advisories/10067