Lucene search
HistoryNov 14, 2008 - 7:20 p.m.
CVE-2008-5093
xss
vulnerability
novell
edirectory
httpstk
nvd
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.0%
Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack (HTTPSTK) in Novell eDirectory before 8.8 SP3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.
Affected configurations
Node
novelledirectory
ORnovelledirectoryRange≤8.8sp2windows
ORnovelledirectoryMatch8.0
ORnovelledirectoryMatch8.5.12a
ORnovelledirectoryMatch8.5.27
ORnovelledirectoryMatch8.6.2
ORnovelledirectoryMatch8.7
ORnovelledirectoryMatch8.7.1
ORnovelledirectoryMatch8.7.1sp1
ORnovelledirectoryMatch8.7.3
ORnovelledirectoryMatch8.7.3sp1windows
ORnovelledirectoryMatch8.7.3sp2windows
ORnovelledirectoryMatch8.7.3sp3windows
ORnovelledirectoryMatch8.7.3sp4windows
ORnovelledirectoryMatch8.7.3sp5windows
ORnovelledirectoryMatch8.7.3sp6windows
ORnovelledirectoryMatch8.7.3sp7windows
ORnovelledirectoryMatch8.7.3sp8windows
ORnovelledirectoryMatch8.7.3sp9windows
ORnovelledirectoryMatch8.7.3.8
ORnovelledirectoryMatch8.7.3.8_presp9
ORnovelledirectoryMatch8.7.3.9
ORnovelledirectoryMatch8.7.3.9linux
ORnovelledirectoryMatch8.7.3.9solaris
ORnovelledirectoryMatch8.7.3.9windows_2000
ORnovelledirectoryMatch8.7.3.9windows_2003
ORnovelledirectoryMatch8.7.3.10
ORnovelledirectoryMatch8.8
ORnovelledirectoryMatch8.8linux
ORnovelledirectoryMatch8.8solaris
ORnovelledirectoryMatch8.8windows_2000
ORnovelledirectoryMatch8.8windows_2003
ORnovelledirectoryMatch8.8.1
ORnovelledirectoryMatch8.8.1linux
ORnovelledirectoryMatch8.8.1solaris
ORnovelledirectoryMatch8.8.1windows_2000
ORnovelledirectoryMatch8.8.1windows_2003
ORnovelledirectoryMatch8.8.2
ORnovelledirectoryMatch8.8.2linux
ORnovelledirectoryMatch8.8.2solaris
ORnovelledirectoryMatch8.8.2windows_2000
ORnovelledirectoryMatch8.8.2windows_2003
Related
cvelist
cvelist
CVE-2008-5093
2008-11-14 19:00:00
nvd
nvd
CVE-2008-5093
2008-11-14 19:20:54
prion
prion
Cross site scripting
2008-11-14 19:20:00
openvas
openvas
Novell eDirectory Multiple Vulnerabilities Nov08 - (Linux)
2008-11-21 00:00:00
Novell eDirectory Multiple Vulnerabilities (Nov 2008) - Linux
2008-11-21 00:00:00
Novell eDirectory Multiple Vulnerabilities Nov08 - (Windows)
2008-11-21 00:00:00
nessus
nessus
Novell eDirectory < 8.8 SP3 Multiple Vulnerabilities (OF, XSS, MC)
2008-09-16 00:00:00
4.3 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
5.4 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
59.0%
Related for CVE-2008-5093