Lucene search

K

MitreCVELIST:CVE-2007-0110

HistoryJan 09, 2007 - 12:00 a.m.

CVE-2007-0110

2007-01-0900:00:00

mitre

www.cve.org

5.7 Medium

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

91.0%

Cross-site scripting (XSS) vulnerability in nidp/idff/sso in Novell Access Manager Identity Server before 3.0.0-1013 allows remote attackers to inject arbitrary web script or HTML via the IssueInstant parameter, which is not properly handled in the resulting error message.

References

osvdb.org/31359

secunia.com/advisories/23654

securitytracker.com/id?1017483

www.securityfocus.com/bid/21921

www.vupen.com/english/advisories/2007/0073

secure-support.novell.com/KanisaPlatform/Publishing/143/3615264_f.SAL_Public.html

5.7 Medium

AI Score

Confidence

High

0.03 Low

EPSS

Percentile

91.0%

Related for CVELIST:CVE-2007-0110

prion1 nvd1 cve1