Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2008-1036
HistoryJun 02, 2008 - 9:30 p.m.

CVE-2008-1036

2008-06-0221:30:00
CWE-79
[email protected]
web.nvd.nist.gov
5

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.3

Confidence

High

EPSS

0.007

Percentile

80.5%

JSON

The International Components for Unicode (ICU) library in Apple Mac OS X before 10.5.3, Red Hat Enterprise Linux 5, and other operating systems omits some invalid character sequences during conversion of some character encodings, which might allow remote attackers to conduct cross-site scripting (XSS) attacks.

Affected configurations

Nvd
Node
applemac_os_xMatch10.4.11
OR
applemac_os_xMatch10.5
OR
applemac_os_xMatch10.5.1
OR
applemac_os_xMatch10.5.2
OR
applemac_os_x_serverMatch10.4.11
OR
applemac_os_x_serverMatch10.5
OR
applemac_os_x_serverMatch10.5.1
OR
applemac_os_x_serverMatch10.5.2
OR
redhatenterprise_linuxMatch5
VendorProductVersionCPE
applemac_os_x10.4.11cpe:2.3:o:apple:mac_os_x:10.4.11:*:*:*:*:*:*:*
applemac_os_x10.5cpe:2.3:o:apple:mac_os_x:10.5:*:*:*:*:*:*:*
applemac_os_x10.5.1cpe:2.3:o:apple:mac_os_x:10.5.1:*:*:*:*:*:*:*
applemac_os_x10.5.2cpe:2.3:o:apple:mac_os_x:10.5.2:*:*:*:*:*:*:*
applemac_os_x_server10.4.11cpe:2.3:o:apple:mac_os_x_server:10.4.11:*:*:*:*:*:*:*
applemac_os_x_server10.5cpe:2.3:o:apple:mac_os_x_server:10.5:*:*:*:*:*:*:*
applemac_os_x_server10.5.1cpe:2.3:o:apple:mac_os_x_server:10.5.1:*:*:*:*:*:*:*
applemac_os_x_server10.5.2cpe:2.3:o:apple:mac_os_x_server:10.5.2:*:*:*:*:*:*:*
redhatenterprise_linux5cpe:2.3:o:redhat:enterprise_linux:5:*:*:*:*:*:*:*

Related

openvas 11
cvelist 1
ubuntu 1
nessus 7
cve 1
oraclelinux 1
debiancve 1
ubuntucve 1
debian 1
prion 1
redhat 1
seebug 1
securityvulns 2
openvas
openvas
Debian: Security Advisory (DSA-1762-1)
2009-04-06 00:00:00
RedHat Security Advisory RHSA-2009:0296
2009-03-13 00:00:00
Ubuntu: Security Advisory (USN-747-1)
2009-04-06 00:00:00
cvelist
cvelist
CVE-2008-1036
2008-06-02 14:00:00
ubuntu
ubuntu
ICU vulnerability
2009-03-26 00:00:00
nessus
nessus
Ubuntu 6.06 LTS / 7.10 / 8.04 LTS / 8.10 : icu vulnerability (USN-747-1)
2009-04-23 00:00:00
Debian DSA-1762-1 : icu - insufficient input sanitising
2009-04-03 00:00:00
Scientific Linux Security Update : icu on SL5.x i386/x86_64
2012-08-01 00:00:00
cve
cve
CVE-2008-1036
2008-06-02 21:30:00
oraclelinux
oraclelinux
icu security update
2009-03-12 00:00:00
debiancve
debiancve
CVE-2008-1036
2008-06-02 21:30:00
ubuntucve
ubuntucve
CVE-2008-1036
2008-06-02 00:00:00
debian
debian
[SECURITY] [DSA 1762-1] New icu packages fix cross site scripting
2009-04-02 13:41:03
prion
prion
Cross site scripting
2008-06-02 21:30:00
redhat
redhat
(RHSA-2009:0296) Moderate: icu security update
2009-03-12 00:00:00
seebug
seebug
Apple Mac OS X 2008-003更新修复多个安全漏洞
2008-05-29 00:00:00
securityvulns
securityvulns
Apple Mac OS X multiple security vulnerabilities
2008-05-30 00:00:00
About the security content of Security Update 2008-003 / Mac OS X 10.5.3
2008-05-30 00:00:00

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.3

Confidence

High

EPSS

0.007

Percentile

80.5%

JSON
Related for NVD:CVE-2008-1036
openvas11cvelist1ubuntu1nessus7cve1oraclelinux1debiancve1ubuntucve1debian1prion1redhat1seebug1securityvulns2