6.8
CVE-2005-1186
- EPSS 1.12%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:36
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMusicmatch Jukebox 10.00.2047 and earlier adds the musicmatch.com domain to the Trusted Sites zone in Internet Explorer, which allows systems in the domain to conduct unauthorized activities, as demonstrated using cross-site scripting (XSS) attacks.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Musicmatch ≫ Jukebox Version <= 10.00.2047
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.12% | 0.618 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 6.8 | 8.6 | 6.4 |
AV:N/AC:M/Au:N/C:P/I:P/A:P
|
http://securitytracker.com/id?1013718
https://exchange.xforce.ibmcloud.com/vulnerabilities/20129
http://seclists.org/lists/bugtraq/2005/Apr/0212.html
http://www.hyperdose.com/advisories/H2005-04.txt