CVE-2008-5093

Published: Nov 14, 2008Modified: Apr 23, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in the HTTP Protocol Stack (HTTPSTK) in Novell eDirectory before 8.8 SP3 allows remote attackers to inject arbitrary web script or HTML via unknown vectors.

Affected (42)

Products: Novell: Edirectory

Novell

1 product

Edirectory

Configuration A

42 vulnerable

Vulnerable Software	Affected Versions
Novell Edirectory	All versions
Novell Edirectory	Up to 8.8
Novell Edirectory	Version 8.0
Novell Edirectory	Version 8.5.12a
Novell Edirectory	Version 8.5.27
Novell Edirectory	Version 8.6.2
Novell Edirectory	Version 8.7.1
Novell Edirectory	Version 8.7.1 sp1
Novell Edirectory	Version 8.7.3.10
Novell Edirectory	Version 8.7.3.8
Novell Edirectory	Version 8.7.3.8_presp9
Novell Edirectory	Version 8.7.3.9
Novell Edirectory	Version 8.7.3.9
Novell Edirectory	Version 8.7.3.9
Novell Edirectory	Version 8.7.3.9
Novell Edirectory	Version 8.7.3.9
Novell Edirectory	Version 8.7.3
Novell Edirectory	Version 8.7.3 sp1
Novell Edirectory	Version 8.7.3 sp2
Novell Edirectory	Version 8.7.3 sp3
Novell Edirectory	Version 8.7.3 sp4
Novell Edirectory	Version 8.7.3 sp5
Novell Edirectory	Version 8.7.3 sp6
Novell Edirectory	Version 8.7.3 sp7
Novell Edirectory	Version 8.7.3 sp8
Novell Edirectory	Version 8.7.3 sp9
Novell Edirectory	Version 8.7
Novell Edirectory	Version 8.8.1
Novell Edirectory	Version 8.8.1
Novell Edirectory	Version 8.8.1
Novell Edirectory	Version 8.8.1
Novell Edirectory	Version 8.8.1
Novell Edirectory	Version 8.8.2
Novell Edirectory	Version 8.8.2
Novell Edirectory	Version 8.8.2
Novell Edirectory	Version 8.8.2
Novell Edirectory	Version 8.8.2
Novell Edirectory	Version 8.8
Novell Edirectory	Version 8.8
Novell Edirectory	Version 8.8
Novell Edirectory	Version 8.8
Novell Edirectory	Version 8.8