Lucene search

MitreCVE-2005-4567

HistoryDec 29, 2005 - 11:03 a.m.

CVE-2005-4567

2005-12-2911:03:00

mitre

web.nvd.nist.gov

cve-2005-4567

cross-site scripting

xss

ftgate technology

security vulnerability

nvd

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.016

Percentile

87.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (Build 4.4.000 Oct 26 2005) allow remote attackers to inject arbitrary web script or HTML by sending (1) the href parameter to index.fts, or the param1 parameter to (2) /domains/index.fts, (3) /config/licence.fts, or (4) /config/systemacl.fts.

Affected configurations

Nvd

Node

floosietekftgateMatch4.4_build_4.4.000

VendorProductVersionCPE
floosietekftgate4.4_build_4.4.000cpe:2.3:a:floosietek:ftgate:4.4_build_4.4.000:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
floosietek	ftgate	4.4_build_4.4.000	cpe:2.3:a:floosietek:ftgate:4.4_build_4.4.000:::::::*

References

archives.neohapsis.com/archives/fulldisclosure/2005-12/1015.html

securitytracker.com/id?1015399

www.osvdb.org/22104

www.osvdb.org/22105

www.osvdb.org/22106

www.osvdb.org/22107

www.securityfocus.com/bid/15972

www.vupen.com/english/advisories/2005/3010

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.016

Percentile

87.2%

JSON

Related for CVE-2005-4567