Lucene search
MitreCVE-2008-4393HistoryOct 07, 2008 - 8:00 p.m.
CVE-2008-4393
2008-10-0720:00:17
CWE-79
mitre
web.nvd.nist.gov
38
cve-2008-4393
cross-site scripting
xss
verisign
kontiki delivery management system
dms
security vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
72.2%
Cross-site scripting (XSS) vulnerability in VeriSign Kontiki Delivery Management System (DMS) 5.0 and earlier allows remote attackers to inject arbitrary web script or HTML via the action parameter to zodiac/servlet/zodiac.
Affected configurations
Node
verisignkontiki_delivery_management_systemRange≤5.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| verisign | kontiki_delivery_management_system | * | cpe:2.3:a:verisign:kontiki_delivery_management_system:*:*:*:*:*:*:*:* |
Related
exploitdb
exploitdb
nvd
nvd
CVE-2008-4393
2008-10-07 20:00:17
kaspersky
kaspersky
KLA10240 CI vulnerability in Kontiki DMS
2008-10-07 00:00:00
prion
prion
Cross site scripting
2008-10-07 20:00:00
cvelist
cvelist
CVE-2008-4393
2008-10-07 18:27:00
packetstorm
packetstorm
verisign-xss.txt
2008-10-07 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
72.2%
Related for CVE-2008-4393