INFORMATION

Name : CVE-2008-2929 First Publication : 2008-08-29
Severity : Medium Last Modification : 2008-09-02

SCORING CVSS v2

Cvss Base Score : 4.3 Attack Range : Network
Cvss Impact Score : 2.9 Attack Complexity : Medium
Cvss Expoit Score : 8.6 Authentification : None Required

DETAIL

Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express and Directory Server Gateway (DSGW) web interface in Red Hat Directory Server 7.1 before SP7 and 8 EL4 and EL5, and Fedora Directory Server, allow remote attackers to inject arbitrary web script or HTML via input values that use % (percent) escaping.


MORE INFORMATIONS

If you login, you will see more informations about this alert including :

1 Oval ID(s)
6 Secondary sources

Your browser must accept cookie for login.

Login : Password: Captcha :
Remember me ?
if you can not read it, please refresh the page

If you don't have a login, register for FREE.