CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2008-7037

The Sidebar gadget in ITN News Gadget (aka ITN Hub Gadget) 1.06 for Windows Vista, and possibly other versions before 1.23, allows remote web servers or man-in-the-middle attackers to execute arbitrary commands via script in a short_title response.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.005

EPSS Ranking 65.9%

CVSS Severity

CVSS v2 Score 7.5

References

http://www.mwrinfosecurity.com/publications/mwri_itn-news-gadget-advisory_2008-02-04.pdf
http://www.securityfocus.com/bid/27725
https://exchange.xforce.ibmcloud.com/vulnerabilities/43563
http://www.mwrinfosecurity.com/publications/mwri_itn-news-gadget-advisory_2008-02-04.pdf
http://www.securityfocus.com/bid/27725
https://exchange.xforce.ibmcloud.com/vulnerabilities/43563

Products affected by CVE-2008-7037

Itn » Itn News Gadget » Version: 1.06

cpe:2.3:a:itn:itn_news_gadget:1.06
Microsoft » Windows Vista » Version: N/A

cpe:2.3:o:microsoft:windows_vista:-

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2008-7037

Products

Pricing

Contact Us