Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-2524

Overview

Vulnerability Score 6.8 6.8
CVE Id CVE-2006-2524
Last Modified 07 Mar 2011 09:36:26
Published 22 May 2006 06:02:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact PARTIAL PARTIAL
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-2524

Summary

Cross-site scripting (XSS) vulnerability in UseBB 1.0 RC1 and earlier allows remote attackers to inject arbitrary web script or HTML via unspecified vectors when processing the user date format.

Vulnerable Systems

Application

  • Usebb 1.0 Rc1


References

CONFIRM - http://www.usebb.net/community/topic.php?id=1130

CONFIRM - http://sourceforge.net/project/shownotes.php?release_id=418462&group_id=93103

SECUNIA - 20187

VUPEN - ADV-2006-1900

XF - usebb-userdate-xss(26600)

OSVDB - 25684


Last Updated: 27 May 2016 10:42:39