Cross-Site Scripting Vulnerability in Linksys Wireless-B Internet Video Camera
CVE-2004-2508

Currently unrated

Key Information:

Vendor: Linksys
Status: Wvc11b
Vendor: CVE Published:; 31 December 2004

What is CVE-2004-2508?

A cross-site scripting vulnerability exists in the main.cgi script of the Linksys WVC11B Wireless-B Internet Video Camera. This vulnerability allows remote attackers to inject arbitrary web scripts or HTML via the 'next_file' parameter. If exploited, this could enable attackers to execute scripts in the context of the user's browser, potentially leading to data theft, session hijacking, or other malicious actions.

References

http://archives.neohapsis.com/archives/bugtraq/2004-06/02...

mailing-listx_refsource_BUGTRAQ

http://www.securityfocus.com/bid/10533

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/16415

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 25, 2005
Vulnerability published
Dec 31, 2004