CVE-2011-1334
Published Jun 29, 2011
Last updated 13 years ago
Overview
- Description
- Cross-site scripting (XSS) vulnerability in Cybozu Office 6, Cybozu Garoon 2.0.0 through 2.1.3, Cybozu Dezie before 6.1, Cybozu MailWise before 3.1, and Cybozu Collaborex before 1.5 allows remote attackers to inject arbitrary web script or HTML via vectors related to "downloading graphic files from the mail system."
- Source
- vultures@jpcert.or.jp
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:N/I:P/A:N
Weaknesses
- nvd@nist.gov
- CWE-79
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cybozu:office:6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "840B6B7E-3894-42FE-9703-9F58E3E1C343"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1556F99E-1609-44FF-83F0-F43FBDE738A4"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "348C389E-ADFD-4D2C-AA54-220664EA2755"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "48F3F19B-25A7-4E9E-9961-1F7C8DBC0327"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "08AE0E10-87A4-4862-A873-A943F44A9862"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.4:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C88D773E-B6DE-4FD2-A911-0D13C6CA902C"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C846A750-F26E-4F1F-85A3-F95BCC9F8A3E"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.0.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2E139B6A-2F36-4EB5-BA1F-84D67C89E935"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6F585001-37C9-42F5-8B13-56827E6AC785"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.1.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "47FD3F43-9ECA-4815-8BDC-B9DAC07E9400"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.1.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F5F2D43-8B67-4D84-94AF-262F6D66F2B9"
},
{
"criteria": "cpe:2.3:a:cybozu:garoon:2.1.3:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "277403E7-3CD9-458C-9669-FB983FF94568"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cybozu:dezie:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A008D879-B6CC-4B4E-AC09-2EE95C766C97",
"versionEndIncluding": "6.0"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2AF84B9B-33F4-4AC2-BD73-75F534C2C44F"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "215F885A-9E88-4A1A-9DC2-D3F0C49D5EEE"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:3.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "485DBA87-EC8A-42B7-A733-75DCC80D582F"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:4.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8402C259-A94C-4565-8966-A7EBC6309D78"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "B8FB82E3-EA14-4A4A-949A-FCB0FDF53933"
},
{
"criteria": "cpe:2.3:a:cybozu:dezie:5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7E63153C-484C-408A-B147-BB25D93F3B19"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cybozu:mailwise:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "2B063F64-8A73-4D16-B6CB-FC832CAA91F2",
"versionEndIncluding": "3.0"
},
{
"criteria": "cpe:2.3:a:cybozu:mailwise:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "51929894-F74C-4F8D-A12F-73CBA4FED396"
},
{
"criteria": "cpe:2.3:a:cybozu:mailwise:2.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EE25F18D-2317-4646-A00A-D627E3BF3868"
},
{
"criteria": "cpe:2.3:a:cybozu:mailwise:2.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6A28D9F5-6A27-42B5-8640-8560D68D930E"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cybozu:collaborex:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E1271BA9-9FD3-444C-B36F-68B4C0AA3189",
"versionEndIncluding": "1.1"
},
{
"criteria": "cpe:2.3:a:cybozu:collaborex:1.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A910D1FE-CBF2-4AF5-B322-A1B87E53D75F"
}
],
"operator": "OR"
}
]
}
]