Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-1282

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2005-1282
Last Modified 05 Sep 2008 04:48:43
Published 02 May 2005 12:00:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2005-1282

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Argosoft Mail Server Pro 1.8.7.6 allow remote attackers to inject arbitrary web script or HTML via (1) the src parameter in an IMG tag, (2) User settings, or (3) Address book input boxes in the webmail interface.

Vulnerable Systems

Application

  • Argosoft Mail Server 1.8.7.6


References

XF - argosoft-mail-server-html-tag-filter-xss(20225)

BID - 13326

SECUNIA - 15100

BUGTRAQ - 20050422 Multiple vulnerabilities in Argosoft Mail Server 1.8.7.6


Last Updated: 27 May 2016 10:40:06