CVE-2005-2542

Published: Aug 10, 2005Modified: Apr 16, 2026

5.0

Vector

AV:N/AC:L/Au:N/C:N/I:P/A:N

Exploitability: 10.0 / Impact: 2.9

Source: NVD

Description

Invision Power Board (IPB) 1.0.3 allows remote attackers to inject arbitrary web script or HTML via an attachment, which is automatically downloaded and processed as HTML.

Affected (10)

Products: Invision Power Services: Invision Board

Invision Power Services

1 product

Invision Board

Configuration A

10 vulnerable

Vulnerable Software	Affected Versions
Invision Power Services Invision Board	Version 2.0.1
Invision Power Services Invision Board	Version 2.0.2
Invision Power Services Invision Board	Version 2.0.3
Invision Power Services Invision Board	Version 2.0.4
Invision Power Services Invision Board	Version 2.0
Invision Power Services Invision Board	Version 2.0_alpha_3
Invision Power Services Invision Board	Version 2.0_pdr3
Invision Power Services Invision Board	Version 2.0_pf1
Invision Power Services Invision Board	Version 2.0_pf2
Invision Power Services Invision Board	Version 2.1_alpha2

References (6)

http://marc.info/?l=bugtraq&m=112327712614854&w=2

Source: cve@mitre.org

http://secunia.com/advisories/16348

Source: cve@mitre.org

http://www.securityfocus.com/bid/14492

Source: cve@mitre.org

Exploit

http://marc.info/?l=bugtraq&m=112327712614854&w=2

Source: af854a3a-2127-422b-91ae-364da2661108

http://secunia.com/advisories/16348

Source: af854a3a-2127-422b-91ae-364da2661108

http://www.securityfocus.com/bid/14492

Source: af854a3a-2127-422b-91ae-364da2661108

Exploit

Timeline

No history available yet.