Oval Definition:oval:org.mitre.oval:def:10878
Revision Date:2013-04-29Version:11
Title:Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
Description:Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2005-0085
Platform(s):CentOS Linux 4
Oracle Linux 4
Red Hat Enterprise Linux 4
Product(s):
Definition Synopsis
  • RHEL4, CentOS4 or Oracle Linux 4
  • The operating system installed on the system is Red Hat Enterprise Linux 4
  • OR CentOS Linux 4.x
  • OR Oracle Linux 4.x
  • AND Configuration section
  • htdig-web is earlier than 3:3.2.0b6-3.40.1
  • OR htdig is earlier than 3:3.2.0b6-3.40.1
    • BACK