Vulnerabilities > CVE-2004-1593 - Cross-Site Scripting vulnerability in SCT Campus Pipeline Render.UserLayoutRootNode.uP

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

sct-corporation

NVD

Published: 2004-12-31

Updated: 2017-07-11

Summary

Cross-site scripting (XSS) vulnerability in render.UserLayoutRootNode.uP in SCT Campus Pipeline allows remote attackers to inject arbitrary web script or HTML via the utf parameter.

Vulnerable Configurations

Part	Description	Count
Application	Sct_Corporation SCT Corporation Campus Pipeline 1.0 SCT Corporation Campus Pipeline 2.0 SCT Corporation Campus Pipeline 2.1 SCT Corporation Campus Pipeline 2.2 SCT Corporation Campus Pipeline 3.0 SCT Corporation Campus Pipeline 3.1 SCT Corporation Campus Pipeline 3.2	7

References

http://marc.info/?l=bugtraq&m=109768337007983&w=2
http://secunia.com/advisories/12826
http://www.securityfocus.com/bid/11392
https://exchange.xforce.ibmcloud.com/vulnerabilities/17704