Test Kennung:	1.3.6.1.4.1.25623.1.0.51705
Kategorie:	CGI abuses
Titel:	WebCalendar XSS, authentication flaws
Zusammenfassung:	NOSUMMARY
Beschreibung:	Description: The remote host has a version of WebCalendar installed vulnerable to multiple vulnerabiliities. Problems include multiple cross-site scripting vulnerabilities, an HTTP response splitting vulnerability and multiple authentication bypass vulnerabilities. Solution : Upgrade to version 0.9.45 or later. Risk factor : High CVSS Score: 7.5
Querverweis:	BugTraq ID: 11651 Common Vulnerability Exposure (CVE) ID: CVE-2004-1510 http://www.securityfocus.com/bid/11651 Bugtraq: 20041109 Multiple Vulnerabilities in WebCalendar (Google Search) http://marc.info/?l=bugtraq&m=110011618724455&w=2 http://secunia.com/advisories/13164 XForce ISS Database: webcalendar-scripts-gain-access(18030) https://exchange.xforce.ibmcloud.com/vulnerabilities/18030 Common Vulnerability Exposure (CVE) ID: CVE-2004-1509 XForce ISS Database: webcalendar-encodedlogin-path-disclosure(18029) https://exchange.xforce.ibmcloud.com/vulnerabilities/18029 Common Vulnerability Exposure (CVE) ID: CVE-2004-1508 XForce ISS Database: webcalendar-init-file-include(18028) https://exchange.xforce.ibmcloud.com/vulnerabilities/18028 Common Vulnerability Exposure (CVE) ID: CVE-2004-1507 XForce ISS Database: webcalendar-response-splitting(18027) https://exchange.xforce.ibmcloud.com/vulnerabilities/18027 Common Vulnerability Exposure (CVE) ID: CVE-2004-1506 XForce ISS Database: webcalendar-img-src-xss(18026) https://exchange.xforce.ibmcloud.com/vulnerabilities/18026
Copyright	Copyright (c) 2005 E-Soft Inc. http://www.securityspace.com

Dies ist nur einer von 146377 Anfälligkeitstests in unserem Testpaket. Finden Sie mehr über unsere vollständigen Sicherheitsüberprüfungen heraus. Um einen gratis Test für diese Anfälligkeit auf Ihrem System durchlaufen zu lassen, registrieren Sie sich bitte unten.