CVE Vulnerabilities

CVE-2004-0606

Published: Dec 06, 2004 | Modified: Jul 11, 2017
CVSS 3.x
N/A
Source:
NVD
CVSS 2.x
6.8 MEDIUM
AV:N/AC:M/Au:N/C:P/I:P/A:P
RedHat/V2
RedHat/V3
Ubuntu

Cross-site scripting (XSS) vulnerability in Infoblox DNS One running firmware 2.4.0-8 and earlier allows remote attackers to execute arbitrary scripts as other users via the (1) CLIENTID or (2) HOSTNAME option of a DHCP request.

Affected Software

Name Vendor Start Version End Version
Dns_one_appliance Infoblox 2.4.0.8 (including) 2.4.0.8 (including)
Dns_one_appliance Infoblox 2.4.0.8a (including) 2.4.0.8a (including)

References