Lucene search

[email protected]CVE-2006-5712

HistoryNov 04, 2006 - 1:07 a.m.

CVE-2006-5712

2006-11-0401:07:00

[email protected]

web.nvd.nist.gov

cascading style sheets

css function

cross-site scripting

xss

cve-2006-5712

mirapoint webmail

img element

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.2 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.7%

JSON

Cross-site scripting (XSS) vulnerability in Mirapoint WebMail allows remote attackers to inject arbitrary web script via the expression Cascading Style Sheets (CSS) function, as demonstrated using the width style for an IMG element.

Affected configurations

NVD

Node

mirapointmirapoint_webmail

CPENameOperatorVersion
mirapoint:mirapoint_webmailmirapoint mirapoint webmaileq*

CPE	Name	Operator	Version
mirapoint:mirapoint_webmail	mirapoint mirapoint webmail	eq	*

References

marc.info/?l=full-disclosure&m=116232831525086&w=2

osvdb.org/33820

securitytracker.com/id?1017146

www.securityfocus.com/bid/20840

exchange.xforce.ibmcloud.com/vulnerabilities/29928

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6.2 Medium

AI Score

Confidence

High

0.009 Low

EPSS

Percentile

82.7%

JSON

Related for CVE-2006-5712

cvelist1 nvd1