CVE-2005-1909 — MEDIUM (4.3)

Q: How severe is CVE-2005-1909?

CVE-2005-1909 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Q: Is there a patch for CVE-2005-1909?

Check the references section above for vendor advisories and patch information. Affected products include: Software602 602Lan Suite.

Vulnerability Description

The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability.

CVSS Score

4.3

MEDIUM

AV:N/AC:M/Au:N/C:N/I:P/A:N

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE

Affected Products

Vendor	Product	Versions
Software602	602Lan Suite	2004

References

http://rgod.altervista.org/602_en.htmlExploit
http://securitytracker.com/id?1014105Exploit
http://rgod.altervista.org/602_en.htmlExploit
http://securitytracker.com/id?1014105Exploit

FAQ

What is CVE-2005-1909?

CVE-2005-1909 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET reques...

How severe is CVE-2005-1909?

CVE-2005-1909 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2005-1909?

Check the references section above for vendor advisories and patch information. Affected products include: Software602 602Lan Suite.