|
[Japanese]
|
JVNDB-2007-000236
|
Overlay Weaver cross-site scripting vulnerability
|
|
Overlay Weaver is software for constructing and emulating overlay network. Overlay Weaver's DHT shell contains a cross-site scripting vulnerability.
|
|
Base Metrics:
4.3 (Medium)
[IPA Score]
- Access Vector: Network
- Access Complexity: Medium
- Authentication: None
- Confidentiality Impact: None
- Integrity Impact: Partial
- Availability Impact: None
|
|
|
|
Overlay Weaver
- Overlay Weaver 0.5.9 - 0.5.11
|
|
|
An arbitrary script may be executed on the user's web browser.
|
|
|
|
Overlay Weaver
|
|
|
|
- CVE-2007-1780
|
|
- JVN : JVN#62399483
- National Vulnerability Database (NVD) : CVE-2007-1780
- Secunia Advisory : SA24669
- SecurityFocus : 23195
- ISS X-Force Database : 33340
- FrSIRT Advisories : FrSIRT/ADV-2007-1167
|
|
[2008/05/21]
Web page published
|
