Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (Build 4.4.000 Oct 26 2005) allow remote attackers to inject arbitrary web script or HTML by sending (1) the href parameter to index.fts, or the param1 parameter to (2) /domains/index.fts, (3) /config/licence.fts, or (4) /config/systemacl.fts.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Floosietek | Ftgate | 4.4_build_4.4.000 |
References
- http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1015.htmlExploit
- http://securitytracker.com/id?1015399Exploit
- http://www.osvdb.org/22104
- http://www.osvdb.org/22105
- http://www.osvdb.org/22106
- http://www.osvdb.org/22107
- http://www.securityfocus.com/bid/15972Exploit
- http://www.vupen.com/english/advisories/2005/3010
- http://archives.neohapsis.com/archives/fulldisclosure/2005-12/1015.htmlExploit
- http://securitytracker.com/id?1015399Exploit
- http://www.osvdb.org/22104
- http://www.osvdb.org/22105
- http://www.osvdb.org/22106
- http://www.osvdb.org/22107
- http://www.securityfocus.com/bid/15972Exploit
FAQ
What is CVE-2005-4567?
CVE-2005-4567 is a vulnerability with a CVSS score of 5.8 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in FTGate Technology (formerly known as Floosietek) FTGate 4.4 (Build 4.4.000 Oct 26 2005) allow remote attackers to inject arbitrary web script or ...
How severe is CVE-2005-4567?
CVE-2005-4567 has been rated MEDIUM with a CVSS base score of 5.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2005-4567?
Check the references section above for vendor advisories and patch information. Affected products include: Floosietek Ftgate.