Logo
vulnerabilityCVE-2008-5729
Name
CVE-2008-5729
Source
NVD ( link)Debian ( link)
Description
Multiple cross-site scripting (XSS) vulnerabilities in AIST NetCat 3.12 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) form and (2) control parameters to FCKeditor/neditor.php, and the (3) path parameter to admin/siteinfo/iframe.inc.php.
CWEs
CWE-79
Published Date
Updated Date
Workaround
-
Advisories
http://www.securityfocus.com/bid/32992Exploit
http://www.securityfocus.com/bid/32992Exploit

Analysis#

Affected Component
Analysis
netcat
Exploitable

Vulnerability Rating#

4.3
CVSSv2

Others affected component#

Name
Project
Project Version
Version
Status
netcat
openwrt
master
0.7.1-r2
Exploitable