Vulnerability CVE-2011-2179

Vulnerability CVE-2011-2179

Published: 2011-06-14 Modified: 2012-02-13

Description:

	Topic	Author	Date
Low	Icinga 1.4.0 Cross-Site Scripting	Stefan Schurtz	16.06.2011

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Nagios -> Nagios
Icinga -> Icinga

http://archives.neohapsis.com/archives/bugtraq/2011-06/0017.html

http://archives.neohapsis.com/archives/bugtraq/2011-06/0018.html

http://securityreason.com/securityalert/8274

http://tracker.nagios.org/view.php?id=224

http://www.openwall.com/lists/oss-security/2011/06/01/10

http://www.openwall.com/lists/oss-security/2011/06/02/6

http://www.rul3z.de/advisories/SSCHADV2011-005.txt

http://www.rul3z.de/advisories/SSCHADV2011-006.txt

http://www.securityfocus.com/bid/48087

http://www.ubuntu.com/usn/USN-1151-1

https://bugzilla.redhat.com/show_bug.cgi?id=709871

https://dev.icinga.org/issues/1605

https://exchange.xforce.ibmcloud.com/vulnerabilities/67797