Vulnerabilities > CVE-2005-1659

CVSS 4.3 - MEDIUM

Attack vector

NETWORK

Attack complexity

MEDIUM

Privileges required

NONE

Confidentiality impact

NONE

Integrity impact

PARTIAL

Availability impact

NONE

network

myserver

nessus

NVD

Published: 2005-05-18

Updated: 2008-09-05

Summary

Cross-site scripting (XSS) vulnerability in filemanager.cpp in MyServer 0.8 allows remote attackers to inject arbitrary Javascript via a URL with a "..." (triple dot) followed by an onmouseover event.

Vulnerable Configurations

Part	Description	Count
Application	Myserver Myserver Myserver 0.8	1

Nessus

NASL family	CGI abuses
NASL id	MYSERVER_DIR_LIST_AND_XSS.NASL
description	The remote host is running MyServer, an open source http server. This version is vulnerable to a directory listing flaw and cross-site scripting. An attacker can execute a cross-site scripting attack, or gain knowledge of certain system information of the server.
last seen	2020-06-01
modified	2020-06-02
plugin id	18218
published	2005-05-10
reporter	This script is Copyright (C) 2005-2018 Tenable Network Security, Inc.
source	https://www.tenable.com/plugins/nessus/18218
title	MyServer 0.8 Multiple Vulnerabilities

Vulnerabilities > CVE-2005-1659 {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"CVE-2005-1659"}]}

Summary

Vulnerable Configurations

Nessus

References

Vulnerabilities > CVE-2005-1659