Lucene search

[email protected]CVE-2004-2382

HistoryAug 16, 2005 - 4:00 a.m.

CVE-2004-2382

2005-08-1604:00:00

[email protected]

web.nvd.nist.gov

perfectnav

microsoft internet explorer

remote attackers

denial of service

browser crash

cve-2004-2382

nvd

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.4%

JSON

The PerfectNav plugin for Microsoft Internet Explorer allows remote attackers to cause a denial of service (browser crash) via a malformed URL such as “?”.

Affected configurations

NVD

Node

perfectnavperfectnav

CPENameOperatorVersion
perfectnav:perfectnavperfectnaveq*

CPE	Name	Operator	Version
perfectnav:perfectnav	perfectnav	eq	*

References

lists.grok.org.uk/pipermail/full-disclosure/2004-February/017830.html

securetarget.net/advisory.htm

securitytracker.com/id?1009218

www.securityfocus.com/bid/9753

exchange.xforce.ibmcloud.com/vulnerabilities/15326

5 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:N/I:N/A:P

7 High

AI Score

Confidence

High

0.018 Low

EPSS

Percentile

88.4%

JSON

Related for CVE-2004-2382

nvd1 cvelist1