mirror of
https://github.com/fkie-cad/nvd-json-data-feeds.git
synced 2025-05-28 09:11:28 +00:00
107 lines
3.2 KiB
JSON
107 lines
3.2 KiB
JSON
{
|
|
"id": "CVE-2007-0705",
|
|
"sourceIdentifier": "cve@mitre.org",
|
|
"published": "2007-02-04T00:28:00.000",
|
|
"lastModified": "2011-03-08T02:50:34.923",
|
|
"vulnStatus": "Modified",
|
|
"cveTags": [],
|
|
"descriptions": [
|
|
{
|
|
"lang": "en",
|
|
"value": "Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information."
|
|
},
|
|
{
|
|
"lang": "es",
|
|
"value": "Vulnerabilidad de salto de zona en Sleipnir 2.49 y anteriores, y Portable Sleipnir 2.45 y anteriores, permite a atacantes remotos evitar restricciones de zonas de contenidos Web mediante cierto script contenido en informaci\u00f3n RSS. NOTA: algunos de estos detalles han sido obtenidos \u00fanicamente de informaci\u00f3n de terceros."
|
|
}
|
|
],
|
|
"metrics": {
|
|
"cvssMetricV2": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"cvssData": {
|
|
"version": "2.0",
|
|
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
|
|
"accessVector": "NETWORK",
|
|
"accessComplexity": "LOW",
|
|
"authentication": "NONE",
|
|
"confidentialityImpact": "PARTIAL",
|
|
"integrityImpact": "PARTIAL",
|
|
"availabilityImpact": "PARTIAL",
|
|
"baseScore": 7.5
|
|
},
|
|
"baseSeverity": "HIGH",
|
|
"exploitabilityScore": 10.0,
|
|
"impactScore": 6.4,
|
|
"acInsufInfo": false,
|
|
"obtainAllPrivilege": false,
|
|
"obtainUserPrivilege": false,
|
|
"obtainOtherPrivilege": true,
|
|
"userInteractionRequired": false
|
|
}
|
|
]
|
|
},
|
|
"weaknesses": [
|
|
{
|
|
"source": "nvd@nist.gov",
|
|
"type": "Primary",
|
|
"description": [
|
|
{
|
|
"lang": "en",
|
|
"value": "NVD-CWE-Other"
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"configurations": [
|
|
{
|
|
"nodes": [
|
|
{
|
|
"operator": "OR",
|
|
"negate": false,
|
|
"cpeMatch": [
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:fenrir:portable_sleipnir:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "2.45",
|
|
"matchCriteriaId": "3763C8EF-BB59-4938-9964-498ADEE40A00"
|
|
},
|
|
{
|
|
"vulnerable": true,
|
|
"criteria": "cpe:2.3:a:fenrir:sleipnir:*:*:*:*:*:*:*:*",
|
|
"versionEndIncluding": "2.49",
|
|
"matchCriteriaId": "E0E67AA7-1661-4BB2-A22A-68666E933E5D"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
}
|
|
],
|
|
"references": [
|
|
{
|
|
"url": "http://jvn.jp/jp/JVN%2393700808/index.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://osvdb.org/32977",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://secunia.com/advisories/23927",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.fenrir.co.jp/press/20070126_2.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.ipa.go.jp/security/vuln/documents/2006/JVN_93700808.html",
|
|
"source": "cve@mitre.org"
|
|
},
|
|
{
|
|
"url": "http://www.vupen.com/english/advisories/2007/0364",
|
|
"source": "cve@mitre.org"
|
|
}
|
|
]
|
|
} |