CVE-2004-2757

Currently unrated

Key Information:

Vendor: Novell
Status: Ichain
Vendor: CVE Published:; 31 December 2004

Summary

Cross-site scripting (XSS) vulnerability in the failed login page in Novell iChain before 2.2 build 2.2.113 and 2.3 First Customer Ship (FCS) allows remote attackers to inject arbitrary web script or HTML via url parameter.

References

http://secunia.com/advisories/10653

third-party-advisoryx_refsource_SECUNIA

https://exchange.xforce.ibmcloud.com/vulnerabilities/14873

vdb-entryx_refsource_XF

http://support.novell.com/cgi-bin/search/searchtid.cgi?/1...

x_refsource_CONFIRM

Timeline

Vulnerability Reserved
Nov 19, 2007
Vulnerability published
Dec 31, 2004

Collectors

NVD DatabaseMitre Database