CVE-1999-1167

Sažetak

Cross-site scripting vulnerability in Third Voice Web annotation utility allows remote users to read sensitive data and generate fake web pages for other Third Voice users by injecting malicious Javascript into an annotation.

Reference

http://www.iss.net/security_center/static/7252.php
http://www.wired.com/news/technology/0%2C1282%2C20636%2C00.html
http://www.wired.com/news/technology/0%2C1282%2C20677%2C00.html

CVSS

Base:	6.4
Impact:	4.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
PARTIAL	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:P/I:P/A:N

Zadnje važnije ažuriranje

07-11-2023 - 01:55

Objavljeno

31-12-1999 - 05:00