Lucene search

[email protected]CVE-2007-5703

HistoryOct 29, 2007 - 10:46 p.m.

CVE-2007-5703

2007-10-2922:46:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2007-5703

cross-site scripting

xss

web security

rsa keon

registration authority

vulnerability

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

85.7%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in (1) Request-spk.xuda and (2) Add-msie-request.xuda in RSA KEON Registration Authority Web Interface 1.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

CPENameOperatorVersion
rsa:keon_registration_authority_web_interfacersa keon registration authority web interfaceeq1.0

CPE	Name	Operator	Version
rsa:keon_registration_authority_web_interface	rsa keon registration authority web interface	eq	1.0

References

osvdb.org/38298

osvdb.org/38299

secunia.com/advisories/27384

securityreason.com/securityalert/3314

www.gamasec.net/english/gs07-02.html

www.kb.cert.org/vuls/id/342793

www.securityfocus.com/archive/1/482729/100/0/threaded

www.securityfocus.com/bid/26196

www.securitytracker.com/id?1018856

www.vupen.com/english/advisories/2007/3658

5.9 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.013 Low

EPSS

Percentile

85.7%

JSON

Related for CVE-2007-5703

prion1 cert1