Lucene search

K
ubuntucveUbuntu.comUB:CVE-2008-1036
HistoryJun 02, 2008 - 12:00 a.m.

CVE-2008-1036

2008-06-0200:00:00
ubuntu.com
ubuntu.com
10

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

78.0%

The International Components for Unicode (ICU) library in Apple Mac OS X
before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems
omits some invalid character sequences during conversion of some character
encodings, which might allow remote attackers to conduct cross-site
scripting (XSS) attacks.

Bugs

OSVersionArchitecturePackageVersionFilename
ubuntu6.06noarchicu< 3.4.1a-1ubuntu1.6.06.2UNKNOWN
ubuntu7.10noarchicu< 3.6-3ubuntu0.2UNKNOWN
ubuntu8.04noarchicu< 3.8-6ubuntu0.1UNKNOWN
ubuntu8.10noarchicu< 3.8.1-2ubuntu0.1UNKNOWN

4.3 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.006 Low

EPSS

Percentile

78.0%