Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2128

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2004-2128
Last Modified 05 Sep 2008 04:43:16
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2004-2128

Summary

Cross-site scripting (XSS) vulnerability in BRS WebWeaver 1.07 allows remote attackers to execute arbitrary script as other users via the query string to ISAPISkeleton.dll.

Vulnerable Systems


References

SECUNIA - 10741

XF - webweaver-isapiskeleton-xss(14977)

BID - 9516

BUGTRAQ - 20040128 BRS WebWeaver Webserver Cross Site Scripting Vulnerability

SECTRACK - 1008880

OSVDB - 3741

CONFIRM - http://www.brswebweaver.com/modules.php?op=modload&name=News&file=article&sid=1


Last Updated: 27 May 2016 10:39:21