Lucene search

K

MitreCVELIST:CVE-2010-4209

HistoryNov 07, 2010 - 9:00 p.m.

CVE-2010-4209

2010-11-0721:00:00

mitre

www.cve.org

11

AI Score

5.3

Confidence

High

EPSS

0.003

Percentile

71.1%

Cross-site scripting (XSS) vulnerability in the Flash component infrastructure in YUI 2.8.0 through 2.8.1, as used in Bugzilla 3.7.1 through 3.7.3 and 4.1, allows remote attackers to inject arbitrary web script or HTML via vectors related to swfstore/swfstore.swf.

References

lists.fedoraproject.org/pipermail/package-announce/2010-November/050813.html

lists.fedoraproject.org/pipermail/package-announce/2010-November/050820.html

lists.fedoraproject.org/pipermail/package-announce/2010-November/050830.html

lists.opensuse.org/opensuse-security-announce/2010-11/msg00005.html

secunia.com/advisories/41955

secunia.com/advisories/42271

www.bugzilla.org/security/3.2.8/

www.openwall.com/lists/oss-security/2010/11/07/1

www.securityfocus.com/archive/1/514622

www.securityfocus.com/bid/44420

www.securitytracker.com/id?1024683

www.vupen.com/english/advisories/2010/2878

www.vupen.com/english/advisories/2010/2975

yuilibrary.com/support/2.8.2/

AI Score

5.3

Confidence

High

EPSS

0.003

Percentile

71.1%

Related for CVELIST:CVE-2010-4209

prion3 ubuntucve2 cve3 nvd3 cvelist1 fedora3 nessus10 openvas8 freebsd1