Lucene search
Ubuntu.comUB:CVE-2008-1025HistoryApr 17, 2008 - 12:00 a.m.
CVE-2008-1025
2008-04-1700:00:00
ubuntu.com
ubuntu.com
12
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.6%
Cross-site scripting (XSS) vulnerability in Apple WebKit, as used in Safari
before 3.1.1, allows remote attackers to inject arbitrary web script or
HTML via a crafted URL with a colon in the hostname portion.
Notes
| Author | Note |
|---|---|
| mdeslaur | this bug doesn’t affect qt4-x11 as per debian bug. |
Related
cert
cert
Apple Safari WebKit fails to properly handle a crafted URL
2008-04-18 00:00:00
cvelist
cvelist
CVE-2008-1025
2008-04-17 17:00:00
debiancve
debiancve
CVE-2008-1025
2008-04-17 19:05:00
cve
cve
CVE-2008-1025
2008-04-17 19:05:00
prion
prion
Cross site scripting
2008-04-17 19:05:00
nvd
nvd
CVE-2008-1025
2008-04-17 19:05:00
nessus
nessus
Mac OS X : Apple Safari < 3.1.1
2008-04-18 00:00:00
Safari < 3.1.1 Multiple Vulnerabilities
2008-04-18 00:00:00
seebug
seebug
Apple Safari 3.1.1版本修复多个安全漏洞
2008-04-18 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.005 Low
EPSS
Percentile
75.6%
Related for UB:CVE-2008-1025