Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2008-1283

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2008-1283
Last Modified 05 Sep 2008 12:00:00
Published 10 Mar 2008 08:44:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2008-1283

Summary

Cross-site scripting (XSS) vulnerability in Neptune Web Server 3.0 allows remote attackers to inject arbitrary web script or HTML via the URI, which is not properly handled in the 404 error page.

Vulnerable Systems

Application

  • Silver-forge Neptune Web Server 3.0


References

XF - neptune-webserver-404errorpage-xss(41089)

BID - 28148

BUGTRAQ - 20080307 XSS in Neptune Web Server

SREASON - 3725


Last Updated: 27 May 2016 10:47:06