Lucene search

[email protected]CVE-2004-1441

HistoryFeb 13, 2005 - 5:00 a.m.

CVE-2004-1441

2005-02-1305:00:00

[email protected]

web.nvd.nist.gov

cve-2004-1441

cross-site scripting

xss

icq.cgi

board power 2.04pf

web script

html

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON

Cross-site scripting (XSS) vulnerability in icq.cgi in Board Power 2.04PF allows remote attackers to inject arbitrary web script or HTML via the action parameter.

Affected configurations

NVD

Node

board_powerboard_powerMatch2.04pf

CPENameOperatorVersion
board_power:board_powerboard powereq2.04pf

CPE	Name	Operator	Version
board_power:board_power	board power	eq	2.04pf

References

archives.neohapsis.com/archives/fulldisclosure/2004-07/0642.html

www.kb.cert.org/vuls/id/744590

www.securityfocus.com/bid/10734

exchange.xforce.ibmcloud.com/vulnerabilities/16698

9.3 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:M/Au:N/C:C/I:C/A:C

6 Medium

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

77.4%

JSON

Related for CVE-2004-1441

cvelist1 nvd1