Lucene search

[email protected]CVE-2011-2078

HistoryMay 10, 2011 - 7:55 p.m.

CVE-2011-2078

2011-05-1019:55:02

CWE-79

[email protected]

web.nvd.nist.gov

cve

2011

2078

xss

vulnerabilities

new atlanta

bluedragon

admin interface

mediacast

remote attackers

web script

html

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the New Atlanta BlueDragon administrative interface in MediaCAST 8 and earlier allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Affected configurations

NVD

Node

inventivetecmediacastRange≤8

CPENameOperatorVersion
inventivetec:mediacastinventivetec mediacastle8

CPE	Name	Operator	Version
inventivetec:mediacast	inventivetec mediacast	le	8

References

securityreason.com/securityalert/8245

www.packetninjas.net/storage/advisories/MediaCast-PWDump-FINAL.txt

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.8%

JSON

Related for CVE-2011-2078

prion1 cvelist1 nvd1