Lucene search

[email protected]CVE-2004-1790

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-1790

2005-05-1004:00:00

[email protected]

web.nvd.nist.gov

cve-2004-1790

cross-site scripting

xss

vulnerability

edimax

ar-6004

adsl routers

web management interface

remote attackers

web script

html

url

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Cross-site scripting (XSS) vulnerability in the web management interface in Edimax AR-6004 ADSL Routers allows remote attackers to inject arbitrary web script or HTML via the URL.

Affected configurations

NVD

Node

edimaxfull_rate_adsl_routerMatchar_6004

CPENameOperatorVersion
edimax:full_rate_adsl_routeredimax full rate adsl routereqar_6004

CPE	Name	Operator	Version
edimax:full_rate_adsl_router	edimax full rate adsl router	eq	ar_6004

References

secunia.com/advisories/10576

securitytracker.com/id?1008643

www.osvdb.org/3435

www.securityfocus.com/archive/1/349089

www.securityfocus.com/bid/9374

exchange.xforce.ibmcloud.com/vulnerabilities/14165

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.008 Low

EPSS

Percentile

82.1%

JSON

Related for CVE-2004-1790

nvd1 cvelist1