Your submission was sent successfully! Close

CVE-2005-0085

Published: 27 April 2005

Cross-site scripting (XSS) vulnerability in ht://dig (htdig) before 3.1.6-r7 allows remote attackers to execute arbitrary web script or HTML via the config parameter, which is not properly sanitized before it is displayed in an error message.

Priority

Unknown

Status

Package Release Status
htdig
Launchpad, Ubuntu, Debian
dapper
Released (3.1.6-11.1ubuntu1)
edgy
Released (3.1.6-11.1ubuntu1)
feisty
Released (3.1.6-11.1ubuntu1)
gutsy
Released (3.1.6-11.1ubuntu1)
upstream Needs triage