Lucene search

MitreCVE-2004-1964

HistoryMay 10, 2005 - 4:00 a.m.

CVE-2004-1964

2005-05-1004:00:00

mitre

web.nvd.nist.gov

cve-2004-1964

cross-site scripting

xss

nqt

network query tool

web security

vulnerability

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.007

Percentile

80.0%

JSON

Cross-site scripting (XSS) vulnerability in nqt.php in Network Query Tool (NQT) 1.6 allows remote attackers to inject arbitrary web script or HTML via the portNum parameter.

Affected configurations

Nvd

Node

freshmeatnetwork_query_toolMatch1.0

freshmeatnetwork_query_toolMatch1.6

VendorProductVersionCPE
freshmeatnetwork_query_tool1.0cpe:2.3:a:freshmeat:network_query_tool:1.0:*:*:*:*:*:*:*
freshmeatnetwork_query_tool1.6cpe:2.3:a:freshmeat:network_query_tool:1.6:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
freshmeat	network_query_tool	1.0	cpe:2.3:a:freshmeat:network_query_tool:1.0:::::::*
freshmeat	network_query_tool	1.6	cpe:2.3:a:freshmeat:network_query_tool:1.6:::::::*

References

marc.info/?l=bugtraq&m=108276405108267&w=2

secunia.com/advisories/11479

www.securityfocus.com/bid/10205

www.waraxe.us/index.php?modname=sa&id=24

exchange.xforce.ibmcloud.com/vulnerabilities/15929

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.7

Confidence

High

EPSS

0.007

Percentile

80.0%

JSON

Related for CVE-2004-1964