Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-4713

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-4713
Last Modified 07 Mar 2011 09:59:03
Published 05 Sep 2007 03:17:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-4713

Summary

Multiple cross-site scripting (XSS) vulnerabilities in urchin.cgi in Urchin 5.6.00r2 allow remote attackers to inject arbitrary web script or HTML via the (1) dtc, (2) vid, (3) n, (4) dt, (5) ed, and (6) bd parameters.

Vulnerable Systems

Application

  • Roi Revolution Urchin 5.6.00r2


References

VUPEN - ADV-2007-3085

MISC - http://pridels-team.blogspot.com/2007/09/urchin-5x-multiple-xss-vuln.html

OSVDB - 36807

XF - urchin-urchin-xss(36401)

BID - 25530

SECUNIA - 26682


Last Updated: 27 May 2016 10:45:57