CVE-2007-0705

Cross-zone scripting vulnerability in Sleipnir 2.49 and earlier, and Portable Sleipnir 2.45 and earlier, allows remote attackers to bypass Web content zone restrictions via certain script contained in RSS data. NOTE: some of these details are obtained from third party information.

Published: Feb 4, 2007
Updated: Apr 13, 2023
CVE: CVE-2007-0705
Severity: High
Exploit:

CVSS v2:

Severity: High
Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P

No CWE or OWASP classifications available.

Affected Software
References

Software	From	Fixed in
fenrir / portable_sleipnir	-	2.45.x
fenrir / sleipnir	-	2.49.x

http://jvn.jp/jp/JVN%2393700808/index.html
http://osvdb.org/32977
http://secunia.com/advisories/23927
http://www.fenrir.co.jp/press/20070126_2.html
http://www.ipa.go.jp/security/vuln/documents/2006/JVN_93700808.html
http://www.vupen.com/english/advisories/2007/0364

Vulnerability Database

291,049

CVE-2007-0705