Lucene search

MitreCVE-2002-1852

HistoryJun 28, 2005 - 4:00 a.m.

CVE-2002-1852

2005-06-2804:00:00

CWE-79

mitre

web.nvd.nist.gov

cve

2002

1852

cross-site scripting

xss

monkey 0.5.0

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.003

Percentile

70.0%

JSON

Cross-site scripting (XSS) vulnerability in Monkey 0.5.0 allows remote attackers to inject arbitrary web script or HTML via (1) the URL or (2) a parameter to test2.pl.

Affected configurations

Nvd

Node

monkey-projectmonkeyMatch0.5.0

VendorProductVersionCPE
monkey-projectmonkey0.5.0cpe:2.3:a:monkey-project:monkey:0.5.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
monkey-project	monkey	0.5.0	cpe:2.3:a:monkey-project:monkey:0.5.0:::::::*

References

archives.neohapsis.com/archives/bugtraq/2002-09/0344.html

www.iss.net/security_center/static/10226.php

www.iss.net/security_center/static/10229.php

www.securityfocus.com/bid/5829

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.003

Percentile

70.0%

JSON

Related for CVE-2002-1852