Lucene search

[email protected]CVE-2008-2165

HistoryMay 16, 2008 - 12:54 p.m.

CVE-2008-2165

2008-05-1612:54:00

CWE-79

[email protected]

web.nvd.nist.gov

cve-2008-2165

xss vulnerability

cisco

bbsm

captive portal 5.3

nvd

accesscodestart.asp

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.9%

JSON

Cross-site scripting (XSS) vulnerability in AccessCodeStart.asp in Cisco Building Broadband Service Manager (BBSM) Captive Portal 5.3 allows remote attackers to inject arbitrary web script or HTML via the msg parameter.

Affected configurations

NVD

Node

ciscobuilding_broadband_service_managerMatch5.3

CPENameOperatorVersion
cisco:building_broadband_service_managercisco building broadband service managereq5.3

CPE	Name	Operator	Version
cisco:building_broadband_service_manager	cisco building broadband service manager	eq	5.3

References

secunia.com/advisories/30222

securityreason.com/securityalert/3895

securitytracker.com/id?1020018

www.securityfocus.com/archive/1/492043/100/0/threaded

www.securityfocus.com/archive/1/492093/100/0/threaded

www.securityfocus.com/bid/29191

www.vupen.com/english/advisories/2008/1535

exchange.xforce.ibmcloud.com/vulnerabilities/42395

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

5.6 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

68.9%

JSON

Related for CVE-2008-2165

seebug1 prion1 nvd1 packetstorm1 securityvulns2 cvelist1 cisco1 exploitdb1