Lucene search

MitreCVE-2004-2258

HistoryJul 19, 2005 - 4:00 a.m.

CVE-2004-2258

2005-07-1904:00:00

mitre

web.nvd.nist.gov

hummingbird exceed

xconfig

security vulnerability

local users

nvd

cve-2004-2258

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

Xconfig in Hummingbird Exceed before 9.0.0.1, when the Screen Definition is password-protected, allows local users to access certain options by switching to another tab, then switching back to the original tab.

Affected configurations

Nvd

Node

hummingbirdexceedMatch9.0

VendorProductVersionCPE
hummingbirdexceed9.0cpe:2.3:a:hummingbird:exceed:9.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
hummingbird	exceed	9.0	cpe:2.3:a:hummingbird:exceed:9.0:::::::*

References

secunia.com/advisories/11678

support.hummingbird.com/customer/download.asp?r2=/exceed/900/xconfig_9002.zip

www.osvdb.org/6304

www.securityfocus.com/bid/10393

exchange.xforce.ibmcloud.com/vulnerabilities/16221

CVSS2

2.1

Attack Vector

LOCAL

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:L/AC:L/Au:N/C:N/I:P/A:N

AI Score

6.7

Confidence

Low

EPSS

Percentile

5.1%

JSON

Related for CVE-2004-2258