Lucene search
HistoryMar 14, 2005 - 5:00 a.m.
CVE-2005-0509
cve-2005-0509
cross-site scripting
xss
mono 1.0.5
asp.net
.net
security vulnerabilities
5.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.012 Low
EPSS
Percentile
85.2%
Multiple cross-site scripting (XSS) vulnerabilities in the Mono 1.0.5 implementation of ASP.NET (.Net) allow remote attackers to inject arbitrary HTML or web script via Unicode representations for ASCII fullwidth characters that are converted to normal ASCII characters, including “>” and “<”.
Affected configurations
Node
microsoft.net_frameworkMatch1.0
ORmicrosoft.net_frameworkMatch1.0sp1
ORmicrosoft.net_frameworkMatch1.0sp2
ORmicrosoft.net_frameworkMatch1.1
ORmicrosoft.net_frameworkMatch1.1sp1
ORmonomonoMatch1.0.5
References
Social References
More
Related
nvd
nvd
CVE-2005-0509
2005-03-14 05:00:00
debiancve
debiancve
CVE-2005-0509
2005-03-14 05:00:00
cvelist
cvelist
CVE-2005-0509
2005-02-22 05:00:00
ubuntucve
ubuntucve
CVE-2005-0509
2005-03-14 00:00:00
5.9 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.012 Low
EPSS
Percentile
85.2%
Related for CVE-2005-0509