5.8
CVE-2006-4660
- EPSS 1.31%
- Veröffentlicht 09.09.2006 00:04:00
- Zuletzt bearbeitet 16.06.2026 22:29:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
LoginMultiple cross-site scripting (XSS) vulnerabilities in the RSS Feed module in AOL ICQ Toolbar 1.3 for Internet Explorer (toolbaru.dll) allow remote attackers to process arbitrary web script or HTML in the Feeds interface context via the (1) title and (2) description elements within an item element in an RSS feed.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Icq Inc ≫ Icq Toolbar Version1.3_for_internet_explorer
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.31% | 0.67 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5.8 | 8.6 | 4.9 |
AV:N/AC:M/Au:N/C:P/I:P/A:N
|
http://secunia.com/advisories/21809
http://securityreason.com/securityalert/1523
http://www.coresecurity.com/index.php5?module=ContentMod&action=item&id=1510
http://www.securityfocus.com/archive/1/445515/100/0/threaded
http://www.securityfocus.com/bid/19900
http://www.vupen.com/english/advisories/2006/3528
https://exchange.xforce.ibmcloud.com/vulnerabilities/28809