Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-2625

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2004-2625
Last Modified 05 Sep 2008 04:44:40
Published 31 Dec 2004 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2004-2625

Summary

Cross-site scripting (XSS) vulnerability in Outblaze Email allows remote attackers to inject arbitrary web script or HTML via Javascript in an attribute of an IMG tag.

Vulnerable Systems

Application

  • Outblaze Email


References

SECUNIA - 12084

XF - outblaze-email-xss(16788)

MISC - http://www.swp-zone.org/archivos/advisory-09.txt

BID - 10756

MISC - http://www.securiteam.com/securitynews/5CP0O20DFI.html

OSVDB - 8104

SECTRACK - 1010735

FULLDISC - 20040718 Cross-Site Scripting email Outblaze


Last Updated: 27 May 2016 10:39:33