Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1287

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2006-1287
Last Modified 07 Mar 2011 09:32:42
Published 19 Mar 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1287

Summary

Cross-site scripting (XSS) vulnerability in Invision Power Board (IPB) 2.0.4 and 2.1.4 before 20060130 allows remote attackers to steal cookies and probably conduct other activities when the victim is using Internet Explorer.

Vulnerable Systems

Application

  • Invision Power Services Invision Power Board 2.0.4

  • Invision Power Services Invision Power Board 2.1.4


References

CONFIRM - http://forums.invisionpower.com/index.php?showtopic=206790

VUPEN - ADV-2006-0861

SECUNIA - 19141


Last Updated: 27 May 2016 10:42:00