CVE-2001-1004

Sažetak

Cross-site scripting (CSS) vulnerability in gnut Gnutella client before 0.4.27 allows remote attackers to execute arbitrary script on other clients by sharing a file whose name contains the script tags.

Reference

http://archives.neohapsis.com/archives/bugtraq/2001-08/0415.html
http://www.gnutelliums.com/linux_unix/gnut/ChangeLog.txt

CVSS

Base:	5.0
Impact:	2.9
Exploitability:	10.0

Pristup

Vektor	Složenost	Autentikacija
NETWORK	LOW	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:L/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

05-09-2008 - 20:25

Objavljeno

31-08-2001 - 04:00