Vulnerabilities > CVE-2004-1969

CVSS 7.5 - HIGH

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

NONE

Confidentiality impact

PARTIAL

Integrity impact

PARTIAL

Availability impact

PARTIAL

network

low complexity

openbb

NVD

Published: 2004-04-25

Updated: 2017-07-11

Summary

The avatar upload capability in Open Bulletin Board (OpenBB) 1.0.6 and earlier allows remote attackers to execute arbitrary script by uploading files that include scripting code such as Javascript.

Vulnerable Configurations

Part	Description	Count
Application	Openbb Openbb Openbb 1.0.0_Beta1 Openbb Openbb 1.0.0_Rc1 Openbb Openbb 1.0.0_Rc2 Openbb Openbb 1.0.0_Rc3 Openbb Openbb 1.0.5 Openbb Openbb 1.0.6	6

References

http://marc.info/?l=bugtraq&m=108301983206107&w=2
http://secunia.com/advisories/11481
http://securitytracker.com/id?1009935
http://www.securityfocus.com/bid/10218
https://exchange.xforce.ibmcloud.com/vulnerabilities/15971

Vulnerabilities > CVE-2004-1969 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2004-1969"}]}

Summary

Vulnerable Configurations

References

Vulnerabilities > CVE-2004-1969