Lucene search

MitreCVE-2005-2982

HistorySep 20, 2005 - 12:03 a.m.

CVE-2005-2982

2005-09-2000:03:00

mitre

web.nvd.nist.gov

cve

2005

2982

cross-site scripting

xss

compaqhttpserver

remote attackers

web script

html

url

404 error page

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

50.3%

JSON

Cross-site scripting (XSS) vulnerability in CompaqHTTPServer 2.1 allows remote attackers to inject arbitrary web script or HTML via the URL, which is not properly quoted in the resulting 404 error page.

Affected configurations

Nvd

Node

compaqcompaqhttpserverMatch2.1

VendorProductVersionCPE
compaqcompaqhttpserver2.1cpe:2.3:a:compaq:compaqhttpserver:2.1:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
compaq	compaqhttpserver	2.1	cpe:2.3:a:compaq:compaqhttpserver:2.1:::::::*

References

marc.info/?l=bugtraq&m=112680922318639&w=2

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.001

Percentile

50.3%

JSON

Related for CVE-2005-2982