CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as 1 AdminViewError and 2 AdminAddadmin via a direct request...

10CVSS7.4AI score0.04538EPSS

Exploits1References1

seebug.org•added 2014/07/01 12:0 a.m.•21 views

Solaris AnswerBook2 Remote Command Execution Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/1556/info A vulnerability exists in version 1.4.2 and prior of the AnswerBook2 server from Sun. It is possible for remote users who have administrative access to execute arbitrary commands on the machine running...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•12 views

Inso DynaWeb httpd 3.1/4.0.2/4.1 Format String Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5384/info Inso DynaWeb webserver, dwhttpd, is used as a subcomponent in products such as Sun's AnswerBook2, which is shipped as part of the Solaris operating environment. The dwhttpd webserver is prone to a remotely...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•29 views

Sun AnswerBook2 1.4.2/1.4.3/1.4.4 Administration Interface Access

No description provided by source. source: http://www.securityfocus.com/bid/1554/info A lack of authentication checks for certain scripts within the administration interface of AnswerBook2 versions 1.4.2 and prior, for Solaris, allows remote users to create administration accounts. By directly...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•11 views

Sun AnswerBook2 1.x Unauthorized Administrative Script Access Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/5383/info Sun Microsystems AnswerBook2 allows users to view Sun documentation through a web browser, and is available for Solaris. AnswerBook2 includes an administrative web interface. Reportedly, it is possible to access...

7.1AI score

Exploits0

OpenVAS•added 2009/12/10 12:0 a.m.•31 views

Sun Solaris AnswerBook2 Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data facilitating execution of arbitrary HTML and script code in a user's browser. The following specific issues were identified: It is...

4.3CVSS6.1AI score0.00442EPSS

Exploits4References5

OpenVAS•added 2009/12/10 12:0 a.m.•25 views

Sun Solaris AnswerBook2 <= 1.4.4 Multiple XSS Vulnerabilities - Active Check

Sun Solaris AnswerBook2 is prone to multiple cross-site scripting XSS vulnerabilities. These issues arise due to insufficient sanitization of user-supplied data facilitating execution of arbitrary HTML and script code in a user SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions migh...

4.3CVSS6AI score0.00442EPSS

Exploits4References4

CVE•added 2007/11/01 5:0 p.m.•68 views

CVE-2002-2425

Sun AnswerBook2 1.2–1.4.2 is vulnerable to remote attackers executing administrative scripts (AdminViewError, AdminAddadmin) via a direct request. The vulnerability affects the specified versions and is documented under CVE-2002-2425 in multiple sources (NVD, Red Hat, CVE List). The available con...

10CVSS7.4AI score0.04538EPSS

Exploits1References3Affected Software1

Cvelist•added 2007/11/01 5:0 p.m.•16 views

CVE-2002-2425

Sun AnswerBook2 1.2 through 1.4.2 allows remote attackers to execute administrative scripts such as 1 AdminViewError and 2 AdminAddadmin via a direct request...

7AI score0.04538EPSS

Exploits1References3

seebug.org•added 2005/05/07 12:0 a.m.•68 views

Sun Solaris AnswerBook2 Multiple XSS

No description provided by source. Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities because the software fails to properly sanitize user-supplied data. Exploits will allow arbitrary HTML and script code to run in a victim's browser, allowing the attacker ...

4.3CVSS6.5AI score0.00442EPSS

Exploits4

Exploit DB•added 2005/05/07 12:0 a.m.•41 views

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities because the software fails to properly sanitize user-supplied data. Exploits will allow arbitrary HTML and script code to run in a victim's browser, allowing the attacker to steal cookie-based credentials a...

4.3CVSS7AI score0.00442EPSS

Exploits4

exploitpack•added 2005/05/07 12:0 a.m.•19 views

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities

Sun Solaris AnswerBook2 - Multiple Cross-Site Scripting Vulnerabilities Sun Solaris AnswerBook2 is reported prone to multiple cross-site scripting vulnerabilities because the software fails to properly sanitize user-supplied data. Exploits will allow arbitrary HTML and script code to run in a...

4.3CVSS0.3AI score0.00442EPSS

Exploits4

NVD•added 2005/05/02 4:0 a.m.•15 views

CVE-2005-0549

Cross-site scripting XSS vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the "View Log Files" function...

4.3CVSS5.6AI score0.00442EPSS

Exploits4References3

securityvulns•added 2005/03/31 12:0 a.m.•24 views

Multiple XSS issues in Sun AnswerBook2

PTT SECURITY ADVISORY DATE: 08-02-2005 AUTHOR: THOMAS LIAM ROMANIS CURRENT EMPLOYER: Echelon Ltd VENDOR: Sun PRODUCT: Sun AnswerBook2 VERSIONS TESTED: 1.4.4 on Solaris 8.0 Sparc TITLE: Multiple issues in Sun Answerbook2 Full Disclosure. Summary. A number of issues have been identified in Sun...

4.3CVSS0.2AI score0.00442EPSS

Exploits4

Packet Storm•added 2005/03/29 12:0 a.m.•36 views

answerbook2.txt

4.3CVSS6.5AI score0.00442EPSS

Exploits4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by