OpenCVE

The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a "</pre><!-" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact None

Integrity Impact Partial

Availability Impact None

AV:N/AC:M/Au:N/C:N/I:P/A:N

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Software602	602lan Suite

Configuration 1 [-]

cpe:2.3:a:software602:602lan_suite:2004:*:*:*:*:*:*:*

No data.

References

Link	Providers
http://rgod.altervista.org/602_en.html
http://securitytracker.com/id?1014105

History

No history.

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2005-06-08T04:00:00Z

Updated: 2024-09-16T19:51:31.008Z

Reserved: 2005-06-08T00:00:00Z

Link: CVE-2005-1909

Vulnrichment

No data.

NVD

Status : Modified

Published: 2005-06-09T04:00:00.000

Modified: 2024-11-20T23:58:24.107

Link: CVE-2005-1909

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a \"</pre><!-\" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2005-06-08T04:00:00Z", "orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre"}, "references": [{"name": "1014105", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://securitytracker.com/id?1014105"}, {"tags": ["x_refsource_MISC"], "url": "http://rgod.altervista.org/602_en.html"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "cve@mitre.org", "ID": "CVE-2005-1909", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The web server control panel in 602LAN SUITE 2004 allows remote attackers to make it more difficult for the administrator to read portions of log files via a \"</pre><!-\" sequence in an HTTP GET request in the logon, possibly due to a cross-site scripting (XSS) vulnerability."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "1014105", "refsource": "SECTRACK", "url": "http://securitytracker.com/id?1014105"}, {"name": "http://rgod.altervista.org/602_en.html", "refsource": "MISC", "url": "http://rgod.altervista.org/602_en.html"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T22:06:57.625Z"}, "title": "CVE Program Container", "references": [{"name": "1014105", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://securitytracker.com/id?1014105"}, {"tags": ["x_refsource_MISC", "x_transferred"], "url": "http://rgod.altervista.org/602_en.html"}]}]}, "cveMetadata": {"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "cveId": "CVE-2005-1909", "datePublished": "2005-06-08T04:00:00Z", "dateReserved": "2005-06-08T00:00:00Z", "dateUpdated": "2024-09-16T19:51:31.008Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}