Lucene search
MitreCVE-2009-1785HistoryMay 22, 2009 - 8:30 p.m.
CVE-2009-1785
2009-05-2220:30:00
CWE-79
mitre
web.nvd.nist.gov
21
cve-2009-1785
cross-site scripting
xss
ulteo open virtual desktop
remote attackers
web script
html
vulnerability
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
49.0%
Cross-site scripting (XSS) vulnerability in Ulteo Open Virtual Desktop 1.0 allows remote attackers to inject arbitrary web script or HTML via the error parameter to header.php. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Affected configurations
Node
ulteoopen_virtual_desktopMatch1.0
| Vendor | Product | Version | CPE |
|---|---|---|---|
| ulteo | open_virtual_desktop | 1.0 | cpe:2.3:a:ulteo:open_virtual_desktop:1.0:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2009-1785
2009-05-22 20:00:00
nvd
nvd
CVE-2009-1785
2009-05-22 20:30:00
prion
prion
Cross site scripting
2009-05-22 20:30:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.001
Percentile
49.0%
Related for CVE-2009-1785