Lucene search

[email protected]CVE-2005-1714

HistoryMay 24, 2005 - 4:00 a.m.

CVE-2005-1714

2005-05-2404:00:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

cve-2005-1714

cross-site scripting

xss

netwin surgemail

vulnerability

remote attackers

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.4%

JSON

Cross-site scripting (XSS) vulnerability in NetWin SurgeMail 3.0c2 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

CPENameOperatorVersion
netwin:surgemailnetwin surgemaileq3.0c2

CPE	Name	Operator	Version
netwin:surgemail	netwin surgemail	eq	3.0c2

References

secunia.com/advisories/15425

www.vupen.com/english/advisories/2005/0576

5.8 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.4%

JSON

Related for CVE-2005-1714

cvelist1 nessus1