CVE-2008-6511

Sažetak

Open redirect vulnerability in login.jsp in Openfire 3.6.0a and earlier allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via the url parameter.

Reference

http://www.andreas-kurtz.de/advisories/AKADV2008-001-v1.0.txt
http://www.securityfocus.com/archive/1/498162/100/0/threaded
https://www.exploit-db.com/exploits/7075

CVSS

Base:	5.8
Impact:	4.9
Exploitability:	8.6

Pristup

Vektor	Složenost	Autentikacija
NETWORK	MEDIUM	NONE

Impact

Povjerljivost	Cjelovitost	Dostupnost
NONE	PARTIAL	PARTIAL

CVSS vektor

AV:N/AC:M/Au:N/C:N/I:P/A:P

Zadnje važnije ažuriranje

11-10-2018 - 20:57

Objavljeno

23-03-2009 - 20:00