PT-2005-3897 · Perldiver · Perldiver

Donnie Werner

Published

2005-09-27

Updated

2011-03-08

CVE-2005-3066

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions PerlDiver versions 1.x

Description A cross-site scripting (XSS) issue allows remote attackers to inject arbitrary web script or HTML via the query string in perldiver.pl. This issue was initially disputed by the vendor but has since been acknowledged.

Recommendations For PerlDiver version 1.x, update to a version where this issue has been addressed, as the vendor has acknowledged the problem.

Exploit

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2005-3066

Affected Products

Perldiver

PT-2005-3897 · Perldiver · Perldiver

CVE-2005-3066

Related Identifiers

Affected Products

References · 7