Lucene search
MitreCVE-2002-1685HistoryJun 21, 2005 - 4:00 a.m.
CVE-2002-1685
2005-06-2104:00:00
mitre
web.nvd.nist.gov
25
cve
2002
1685
xss
vulnerability
badblue
enterprise edition
personal edition
remote attackers
arbitrary script
ext.dll isapi
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.9
Confidence
High
EPSS
0.002
Percentile
58.3%
Cross-site scripting vulnerability (XSS) in BadBlue Enterprise Edition and Personal Edition 1.7 and 1.7.2 allows remote attackers to execute arbitrary script as other users by injecting script into ext.dll ISAPI.
Affected configurations
Node
working_resources_inc.badblueMatchenterprise_1.7.2
ORworking_resources_inc.badblueMatchpersonal_1.7
ORworking_resources_inc.badblueMatchpersonal_1.7.2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| working_resources_inc. | badblue | enterprise_1.7.2 | cpe:2.3:a:working_resources_inc.:badblue:enterprise_1.7.2:*:*:*:*:*:*:* |
| working_resources_inc. | badblue | personal_1.7 | cpe:2.3:a:working_resources_inc.:badblue:personal_1.7:*:*:*:*:*:*:* |
| working_resources_inc. | badblue | personal_1.7.2 | cpe:2.3:a:working_resources_inc.:badblue:personal_1.7.2:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2002-1685
2005-06-21 04:00:00
nvd
nvd
CVE-2002-1685
2002-12-31 05:00:00
exploitdb
exploitdb
Working Resources BadBlue 1.7 - 'ext.dll' Cross-Site Scripting
2002-06-23 00:00:00
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
6.9
Confidence
High
EPSS
0.002
Percentile
58.3%
Related for CVE-2002-1685