Lucene search

MitreCVE-2004-2278

HistoryJul 19, 2005 - 4:00 a.m.

CVE-2004-2278

2005-07-1904:00:00

mitre

web.nvd.nist.gov

cve-2004-2278

cross-site scripting

xss

vhost

web gui

security vulnerability

nvd

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.002

Percentile

53.7%

JSON

Unknown cross-site scripting (XSS) vulnerability in the web GUI in vHost before 3.10r1 has unknown impact and attack vectors.

Affected configurations

Nvd

Node

chaogic_systemsvhostMatch3.00r1

chaogic_systemsvhostMatch3.00r2

chaogic_systemsvhostMatch3.00r3

chaogic_systemsvhostMatch3.00r4

chaogic_systemsvhostMatch3.00r5

chaogic_systemsvhostMatch3.00r6

chaogic_systemsvhostMatch3.01r1

chaogic_systemsvhostMatch3.02r1

chaogic_systemsvhostMatch3.02r2

chaogic_systemsvhostMatch3.03r1

chaogic_systemsvhostMatch3.04r1

chaogic_systemsvhostMatch3.05r1

chaogic_systemsvhostMatch3.05r2

chaogic_systemsvhostMatch3.05r3

chaogic_systemsvhostMatch3.05r4

chaogic_systemsvhostMatch3.05r5

chaogic_systemsvhostMatch3.05r6

VendorProductVersionCPE
chaogic_systemsvhost3.00r1cpe:2.3:a:chaogic_systems:vhost:3.00r1:*:*:*:*:*:*:*
chaogic_systemsvhost3.00r2cpe:2.3:a:chaogic_systems:vhost:3.00r2:*:*:*:*:*:*:*
chaogic_systemsvhost3.00r3cpe:2.3:a:chaogic_systems:vhost:3.00r3:*:*:*:*:*:*:*
chaogic_systemsvhost3.00r4cpe:2.3:a:chaogic_systems:vhost:3.00r4:*:*:*:*:*:*:*
chaogic_systemsvhost3.00r5cpe:2.3:a:chaogic_systems:vhost:3.00r5:*:*:*:*:*:*:*
chaogic_systemsvhost3.00r6cpe:2.3:a:chaogic_systems:vhost:3.00r6:*:*:*:*:*:*:*
chaogic_systemsvhost3.01r1cpe:2.3:a:chaogic_systems:vhost:3.01r1:*:*:*:*:*:*:*
chaogic_systemsvhost3.02r1cpe:2.3:a:chaogic_systems:vhost:3.02r1:*:*:*:*:*:*:*
chaogic_systemsvhost3.02r2cpe:2.3:a:chaogic_systems:vhost:3.02r2:*:*:*:*:*:*:*
chaogic_systemsvhost3.03r1cpe:2.3:a:chaogic_systems:vhost:3.03r1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
chaogic_systems	vhost	3.00r1	cpe:2.3:a:chaogic_systems:vhost:3.00r1:::::::*
chaogic_systems	vhost	3.00r2	cpe:2.3:a:chaogic_systems:vhost:3.00r2:::::::*
chaogic_systems	vhost	3.00r3	cpe:2.3:a:chaogic_systems:vhost:3.00r3:::::::*
chaogic_systems	vhost	3.00r4	cpe:2.3:a:chaogic_systems:vhost:3.00r4:::::::*
chaogic_systems	vhost	3.00r5	cpe:2.3:a:chaogic_systems:vhost:3.00r5:::::::*
chaogic_systems	vhost	3.00r6	cpe:2.3:a:chaogic_systems:vhost:3.00r6:::::::*
chaogic_systems	vhost	3.01r1	cpe:2.3:a:chaogic_systems:vhost:3.01r1:::::::*
chaogic_systems	vhost	3.02r1	cpe:2.3:a:chaogic_systems:vhost:3.02r1:::::::*
chaogic_systems	vhost	3.02r2	cpe:2.3:a:chaogic_systems:vhost:3.02r2:::::::*
chaogic_systems	vhost	3.03r1	cpe:2.3:a:chaogic_systems:vhost:3.03r1:::::::*

Rows per page:

1-10 of 171

References

chaogic.com/vhost/ChangeLog.txt

secunia.com/advisories/11113

securitytracker.com/id?1009404

www.osvdb.org/4207

www.securityfocus.com/bid/9860

exchange.xforce.ibmcloud.com/vulnerabilities/15446

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.6

Confidence

High

EPSS

0.002

Percentile

53.7%

JSON

Related for CVE-2004-2278