Vulnerabilities > CVE-2002-1388 - Unspecified vulnerability in Mhonarc
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN mhonarc
nessus
Summary
Cross-site scripting (XSS) vulnerability in MHonArc before 2.5.14 allows remote attackers to inject arbitrary HTML into web archive pages via HTML mail messages.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 8 |
Nessus
| NASL family | Debian Local Security Checks |
| NASL id | DEBIAN_DSA-221.NASL |
| description | Earl Hood, author of mhonarc, a mail to HTML converter, discovered a cross site scripting vulnerability in this package. A specially crafted HTML mail message can introduce foreign scripting content in archives, by-passing MHonArc |
| last seen | 2020-06-01 |
| modified | 2020-06-02 |
| plugin id | 15058 |
| published | 2004-09-29 |
| reporter | This script is Copyright (C) 2004-2019 Tenable Network Security, Inc. |
| source | https://www.tenable.com/plugins/nessus/15058 |
| title | Debian DSA-221-1 : mhonarc - XSS |