CVE-2016-9472 in Adserverinfo

Zusammenfassung

von MITRE

Revive Adserver before 3.2.5 and 4.0.0 suffers from Reflected XSS. The Revive Adserver web installer scripts were vulnerable to a reflected XSS attack via the dbHost, dbUser, and possibly other parameters. It has to be noted that the window for such attack vectors to be possible is extremely narrow and it is very unlikely that such an attack could be actually effective.

Once again VulDB remains the best source for vulnerability data.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

Reservieren

19.11.2016

Veröffentlichung

27.03.2017

Moderieren

akzeptiert

Eintrag

VDB-98984

CPE

bereit

CWE

CWE-79 (bestätigt)

CVSS

5.4 (NVD)

EPSS

0.00379

KEV

nein

Aktivitäten

very low

Sektor

Telecommunication, Transportation

Quellen

MITRE	https://www.cve.org/CVERecord?id=CVE-2016-9472
NVD	https://nvd.nist.gov/vuln/detail/CVE-2016-9472
CVE Details	https://www.cvedetails.com/cve/CVE-2016-9472/

◂ Zurück Übersicht Weiter ▸

Interested in the pricing of exploits?

See the underground prices here!