📦

optivity_telephony_manager

Vendor: nortel

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 1 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 38.60% Exploit Prob.

Latest CVE CVE-2004-1319 Dec 15

Security Vulnerability Index

Page 1 / 1

5.0 CVSS

CVE-2004-1319

The DHTML Edit Control (dhtmled.ocx) allows remote attackers to inject arbitrary web script into other domains by setting a name for a window, opening a child page whose target is the window with the given name, then injecting the script from the parent into the child using execScript, as demonstrated by "AbusiveParent" in Internet Explorer 6.0.2900.2180.

EPSS: 31.30%

Severity: MEDIUM

Dec 15, 2004

5.0 CVSS

CVE-2004-0839

RCE

Internet Explorer in Windows XP SP2, and other versions including 5.01 and 5.5, allows remote attackers to install arbitrary programs via a web page that uses certain styles and the AnchorClick behavior, popup windows, and drag-and-drop capabilities to drop the program in the local startup folder, as demonstrated by "wottapoop.html".

EPSS: 45.91%

Severity: MEDIUM

Aug 18, 2004

Displaying 2 of 2 Total Entries

Total 1 Sections