Lucene search

K

[email protected]NVD:CVE-2004-0591

HistoryAug 06, 2004 - 4:00 a.m.

CVE-2004-0591

2004-08-0604:00:00

[email protected]

web.nvd.nist.gov

1

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.8 Medium

AI Score

Confidence

High

0.916 High

EPSS

Percentile

98.9%

Cross-site scripting (XSS) vulnerability in the print_header_uc function for SqWebMail 4.0.4 and earlier, and possibly 3.x, allows remote attackers to inject arbitrary web script or HRML via (1) e-mail headers or (2) a message with a “message/delivery-status” MIME Content-Type.

Affected configurations

NVD

Node

inter7sqwebmailMatch4.0.4

References

marc.info/?l=bugtraq&m=108786212220140&w=2

secunia.com/advisories/11918/

www.debian.org/security/2004/dsa-533

www.gentoo.org/security/en/glsa/glsa-200408-02.xml

www.securityfocus.com/bid/10588

exchange.xforce.ibmcloud.com/vulnerabilities/16467

6.8 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:M/Au:N/C:P/I:P/A:P

5.8 Medium

AI Score

Confidence

High

0.916 High

EPSS

Percentile

98.9%

Related for NVD:CVE-2004-0591

openvas4 cvelist1 nessus2 gentoo1 ubuntucve1 cve1 debian1 debiancve1 osv1