CVE-2005-1710

Sažetak

Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page.

Reference

http://marc.info/?l=bugtraq&m=111695726810435&w=2
http://secunia.com/advisories/15452
http://www.bluecoat.com/support/knowledge/advisory_reporter_711_vulnerabilities.html
http://www.osvdb.org/16765
http://www.osvdb.org/16766
http://www.vupen.com/english/advisories/2005/0589

CVSS

Base:	4.3
Impact:	2.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	NONE

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:N

Zadnje važnije ažuriranje

18-10-2016 - 03:22

Objavljeno

24-05-2005 - 04:00