Vulnerabilities > CVE-2003-1164 - Unspecified vulnerability in Mldonkey 2.5.4
Attack vector
UNKNOWN Attack complexity
UNKNOWN Privileges required
UNKNOWN Confidentiality impact
UNKNOWN Integrity impact
UNKNOWN Availability impact
UNKNOWN mldonkey
exploit available
Summary
Cross-site scripting (XSS) vulnerability in Mldonkey 2.5-4 allows remote attackers to inject arbitrary web script or HTML via the URI, which is injected into the HTML error page.
Vulnerable Configurations
| Part | Description | Count |
|---|---|---|
| Application | 1 |
Exploit-Db
| description | Mldonkey 2.5 -4 Web Interface Error Message Cross-site Scripting Vulnerability. CVE-2003-1164. Remote exploits for multiple platform |
| id | EDB-ID:23320 |
| last seen | 2016-02-02 |
| modified | 2003-10-31 |
| published | 2003-10-31 |
| reporter | Chris Sharp |
| source | https://www.exploit-db.com/download/23320/ |
| title | Mldonkey 2.5 -4 Web Interface Error Message Cross-Site Scripting Vulnerability |
References
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/013070.html
- http://lists.grok.org.uk/pipermail/full-disclosure/2003-October/013070.html
- http://secunia.com/advisories/10134
- http://secunia.com/advisories/10134
- http://www.securityfocus.com/bid/8946
- http://www.securityfocus.com/bid/8946
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13615
- https://exchange.xforce.ibmcloud.com/vulnerabilities/13615