Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2004-1229

Overview

Vulnerability Score 7.5 7.5
CVE Id CVE-2004-1229
Last Modified 10 Sep 2008 03:29:38
Published 10 Jan 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity LOW
Authentication NONE

CVE-2004-1229

Summary

Cross-site scripting vulnerability in the parser for Gadu-Gadu allows remote attackers to inject arbitrary web script or HTML via (1) http:// or (2) news:// URLs, a different vulnerability than CVE-2004-1410.

Vulnerable Systems

Application

  • Gadu-gadu Instant Messenger


References

BID - 11899

OSVDB - 12517

MISC - http://www.man.poznan.pl/~security/gg-adv.txt

SECUNIA - 13450

BUGTRAQ - 20041213 Gadu-Gadu several vulnerabilities


Last Updated: 27 May 2016 10:38:56