Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1335

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1335
Last Modified 30 Jun 2011 12:00:00
Published 29 Jun 2011 01:55:03
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1335

Summary

Cross-site scripting (XSS) vulnerability in Cybozu Office 6, 7, and 8 before 8.1.1 allows remote attackers to inject arbitrary web script or HTML via vectors related to the "address book and user list functions."

Vulnerable Systems

Application

  • Cybozu Office 6

  • Cybozu Office 7

  • Cybozu Office 8


References

CONFIRM - http://cs.cybozu.co.jp/information/20100816notice05.php

BID - 48446

OSVDB - 73320

SECUNIA - 45050

SECUNIA - 44992

JVNDB - JVNDB-2011-000047

JVN - JVN#55508059


Last Updated: 27 May 2016 10:56:18