Lucene search

Ubuntu.comUB:CVE-2005-4191

HistoryDec 13, 2005 - 12:00 a.m.

CVE-2005-4191

2005-12-1300:00:00

ubuntu.com

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in
templates/tasklists/tasklists.inc in Horde Nag Task List Manager H3 before
2.0.4 allow remote authenticated users to inject arbitrary web script or
HTML via (1) the tasklist’s name or (2) description, when creating a new
tasklist.

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchnag2< 2.0.4-1UNKNOWN
ubuntu6.10noarchnag2< 2.0.4-1UNKNOWN
ubuntu7.04noarchnag2< 2.0.4-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	6.06	noarch	nag2	< 2.0.4-1	UNKNOWN
ubuntu	6.10	noarch	nag2	< 2.0.4-1	UNKNOWN
ubuntu	7.04	noarch	nag2	< 2.0.4-1	UNKNOWN

References

launchpad.net/bugs/cve/CVE-2005-4191

nvd.nist.gov/vuln/detail/CVE-2005-4191

security-tracker.debian.org/tracker/CVE-2005-4191

www.cve.org/CVERecord?id=CVE-2005-4191

3.5 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:S/C:N/I:P/A:N

0.002 Low

EPSS

Percentile

53.2%

JSON

Related for UB:CVE-2005-4191