Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-0617

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2004-0617
Last Modified 05 Sep 2008 04:38:54
Published 06 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-0617

Summary

Cross-site scripting (XSS) vulnerability in ArbitroWeb 0.6 allows remote attackers to inject arbitrary script or HTML via the rawURL parameter.

Vulnerable Systems

Application

  • Arbitroweb 0.5

  • Arbitroweb 0.6


References

XF - arbitroweb-rawurl-xss(16481)

BID - 10592

BUGTRAQ - 20040622 ArbitroWeb v0.6 Javascript injection vulnerability


Last Updated: 27 May 2016 10:38:40