Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2005-4727

Overview

Vulnerability Score 5.1 5.1
CVE Id CVE-2005-4727
Last Modified 07 Mar 2011 09:28:53
Published 31 Dec 2005 12:00:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity HIGH
Authentication NONE

CVE-2005-4727

Summary

Cross-site scripting (XSS) vulnerability in gbook.cgi in gBook before 1.0.2 allows remote attackers to inject arbitrary web script or HTML via the User-Agent HTTP header field.

Vulnerable Systems

Application

  • Martin Bauer Gbook 1.0

  • Martin Bauer Gbook 1.0.1


References

BID - 14725

SECUNIA - 16668

XF - gbook-unknown-xss(22114)

VUPEN - ADV-2005-1617

BUGTRAQ - 20060220 More info: gBook Multiple Unspecified Cross-Site Scripting Vulnerabilities

OSVDB - 19144

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=353531

CONFIRM - http://gbook.sourceforge.net/sec/14725


Last Updated: 27 May 2016 10:41:24