Lucene search

K

PRIOn knowledge basePRION:CVE-2008-4029

HistoryNov 12, 2008 - 11:30 p.m.

Cross site scripting

2008-11-1223:30:00

PRIOn knowledge base

www.prio-n.com

5

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.921 High

EPSS

Percentile

98.9%

Cross-domain vulnerability in Microsoft XML Core Services 3.0 and 4.0, as used in Internet Explorer, allows remote attackers to obtain sensitive information from another domain via a crafted XML document, related to improper error checks for external DTDs, aka “MSXML DTD Cross-Domain Scripting Vulnerability.”

References

securitytracker.com/id?1021164

www.securityfocus.com/bid/32155

www.us-cert.gov/cas/techalerts/TA08-316A.html

www.vupen.com/english/advisories/2008/3111

docs.microsoft.com/en-us/security-updates/securitybulletins/2008/ms08-069

marc.info/?l=bugtraq&m=122703006921213&w=2

oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5999

5.8 Medium

AI Score

Confidence

Low

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

0.921 High

EPSS

Percentile

98.9%

Related for PRION:CVE-2008-4029

exploitpack1 checkpoint_advisories2 nvd1 seebug2 packetstorm1 cvelist1 cve1 exploitdb1 securityvulns2 mskb1 openvas2 nessus1