NVD

Id
49044  
Name
CVE-2009-1775  
Description
Multiple cross-site scripting (XSS) vulnerabilities in Ulteo Open Virtual Desktop 1.0 allow remote attackers to inject arbitrary web script or HTML via the id parameter to (1) admin/applications.php, (2) admin/appsgroup.php, (3) admin/users.php, (4) admin/usersgroup.php, and (5) admin/tasks.php; (6) show parameter to admin/logs.php; and (7) mode parameter to admin/configuration-partial.php. NOTE: some of these details are obtained from third party information.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2017-01-07  
Published
2009-05-22  
Modified Date
2009-06-30  
Seq
2009-1775  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
248000 49044 CVE-2009-1775 http://www.insight-tech.org/index.php?p=Ulteo-Open-Virtual-Desktop-v1-0-multiple-XSS  View
248001 49044 CVE-2009-1775 34927  View
248002 49044 CVE-2009-1775 http://www.ulteo.com/home/en/ovdi/openvirtualdesktop/downloadnow?autolang=en  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
45028 JVNDB-2009-006035 Ulteo Open Virtual Desktop におけるクロスサイトスクリプティングの脆弱性 Ulteo Open Virtual Desktop には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2009-1775 39206 CVE-2009-1775 49044 4.3 http://jvndb.jvn.jp/ja/contents/2009/JVNDB-2009-006035.html 2009-05-22 2012-12-20 View