CyberSec.Space Logo
返回 CVE 瀏覽器

CVE-2005-0548

MEDIUM
4.3
CVSS Severity Score
EPSS Score0.1110%
EPSS Percentile0.24th
Published2005年3月7日
Last Modified2026年4月16日

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search function.

Affected Platforms (CPE)

📦
Sun

Solaris Answerbook2

= 1.2
📦
Sun

Solaris Answerbook2

= 1.3
📦
Sun

Solaris Answerbook2

= 1.4
📦
Sun

Solaris Answerbook2

= 1.4.1
📦
Sun

Solaris Answerbook2

= 1.4.2
📦
Sun

Solaris Answerbook2

= 1.4.3
📦
Sun

Solaris Answerbook2

= 1.4.4

References & Advisories

🔗 http://marc.info/?l=bugtraq&m=111205163531628&w=2
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57737-1
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000230.1-1
🔗 http://marc.info/?l=bugtraq&m=111205163531628&w=2
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-26-57737-1
🔗 http://sunsolve.sun.com/search/document.do?assetkey=1-77-1000230.1-1

相關漏洞威脅

CVE-2000-069710.0

The administration interface for the dwhttpd web server in Solaris AnswerBook2 allows interface users to remotely execute commands...

CVE-2000-06967.5

The administration interface for the dwhttpd web server in Solaris AnswerBook2 does not properly authenticate requests to its supp...

CVE-2005-05494.3

Cross-site scripting (XSS) vulnerability in Solaris AnswerBook2 Documentation 1.4.4 and earlier allows remote attackers to inject ...

CVE-2005-051910.0

ArGoSoft FTP Server before 1.4.2.7 allows remote attackers to read arbitrary files by uploading a ZIP file containing a shortcut (...