Lucene search
HistoryDec 30, 2008 - 7:30 p.m.
CVE-2008-5760
kerio mailserver
xss
cross-site scripting
vulnerability
cve-2008-5760
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.0%
Cross-site scripting (XSS) vulnerability in error413.php in Kerio MailServer before 6.6.2 allows remote attackers to inject arbitrary web script or HTML via the sent parameter. NOTE: some of these details are obtained from third party information.
Affected configurations
Node
keriokerio_mailserverRange≤6.6.1
ORkeriokerio_mailserverMatch5.0
ORkeriokerio_mailserverMatch5.1
ORkeriokerio_mailserverMatch5.1.1
ORkeriokerio_mailserverMatch5.6.3
ORkeriokerio_mailserverMatch5.6.4
ORkeriokerio_mailserverMatch5.6.5
ORkeriokerio_mailserverMatch5.7.0
ORkeriokerio_mailserverMatch5.7.1
ORkeriokerio_mailserverMatch5.7.2
ORkeriokerio_mailserverMatch5.7.3
ORkeriokerio_mailserverMatch5.7.4
ORkeriokerio_mailserverMatch5.7.5
ORkeriokerio_mailserverMatch5.7.6
ORkeriokerio_mailserverMatch5.7.7
ORkeriokerio_mailserverMatch5.7.8
ORkeriokerio_mailserverMatch5.7.9
ORkeriokerio_mailserverMatch5.7.10
ORkeriokerio_mailserverMatch6.0
ORkeriokerio_mailserverMatch6.0.0
ORkeriokerio_mailserverMatch6.0.1
ORkeriokerio_mailserverMatch6.0.2
ORkeriokerio_mailserverMatch6.0.3
ORkeriokerio_mailserverMatch6.0.4
ORkeriokerio_mailserverMatch6.0.5
ORkeriokerio_mailserverMatch6.0.6
ORkeriokerio_mailserverMatch6.0.7
ORkeriokerio_mailserverMatch6.0.8
ORkeriokerio_mailserverMatch6.0.9
ORkeriokerio_mailserverMatch6.0.10
ORkeriokerio_mailserverMatch6.1.1
ORkeriokerio_mailserverMatch6.1.2
ORkeriokerio_mailserverMatch6.1.3
ORkeriokerio_mailserverMatch6.1.3_patch_1
ORkeriokerio_mailserverMatch6.1.4
ORkeriokerio_mailserverMatch6.2.0
ORkeriokerio_mailserverMatch6.2.1
ORkeriokerio_mailserverMatch6.2.2
ORkeriokerio_mailserverMatch6.3.0
ORkeriokerio_mailserverMatch6.3.1
ORkeriokerio_mailserverMatch6.3.1_p1
ORkeriokerio_mailserverMatch6.3.1_p2
ORkeriokerio_mailserverMatch6.4.0
ORkeriokerio_mailserverMatch6.4.1
ORkeriokerio_mailserverMatch6.4.2
ORkeriokerio_mailserverMatch6.5.0
ORkeriokerio_mailserverMatch6.5.0patch_1
ORkeriokerio_mailserverMatch6.5.1
ORkeriokerio_mailserverMatch6.5.2
ORkeriokerio_mailserverMatch6.6.0
ORkeriokerio_mailserverMatch6.6.0patch_1
Related
prion
prion
Cross site scripting
2008-12-30 19:30:00
cvelist
cvelist
CVE-2008-5760
2008-12-30 19:00:00
nvd
nvd
CVE-2008-5760
2008-12-30 19:30:00
openvas
openvas
Kerio Mail Server Multiple Cross Site Scripting vulnerabilities
2009-01-08 00:00:00
Kerio Mail Server Multiple Cross Site Scripting vulnerabilities
2009-01-08 00:00:00
nessus
nessus
Kerio MailServer < 6.6.2 Multiple XSS (KSEC-2008-12-16-01)
2008-12-22 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.6 Medium
AI Score
Confidence
High
0.003 Low
EPSS
Percentile
66.0%
Related for CVE-2008-5760