Lucene search

[email protected]NVD:CVE-2004-2765

HistoryJan 28, 2010 - 8:30 p.m.

CVE-2004-2765

2010-01-2820:30:01

CWE-79

[email protected]

web.nvd.nist.gov

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.3 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

Cross-site scripting (XSS) vulnerability in Webmail in Sun ONE Messaging Server 6.1 and iPlanet Messaging Server 5.2 before 5.2hf2.02, when Internet Explorer is used, allows remote attackers to inject arbitrary web script or HTML via a crafted e-mail message, a different vulnerability than CVE-2005-2022 and CVE-2006-5486.

Affected configurations

NVD

Node

suniplanet_messaging_serverMatch5.2

AND

sunsolarisMatch2.6sparc

sunsolarisMatch8.0sparc

Node

sunone_messaging_serverMatch6.1

AND

sunsolarisMatch8.0sparc

sunsolarisMatch9.0sparc

Node

sunone_messaging_serverMatch6.1

AND

sunsolarisMatch9.0x86

Node

sunone_messaging_serverMatch6.1

AND

redhatenterprise_linuxMatch2.1

References

sunsolve.sun.com/search/document.do?assetkey=1-21-116568-56-1

sunsolve.sun.com/search/document.do?assetkey=1-66-201601-1

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.3 Medium

AI Score

Confidence

High

0.004 Low

EPSS

Percentile

74.9%

JSON

Related for NVD:CVE-2004-2765

cvelist6 cve6 nvd5 nessus6