CVE-2005-3921

EPSS 1.60% · P82 Updated Feb 27, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2005-3921

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Description

Cross-site scripting (XSS) vulnerability in Cisco IOS Web Server for IOS 12.0(2a) allows remote attackers to inject arbitrary web script or HTML by (1) packets containing HTML that an administrator views via an HTTP interface to the contents of memory buffers, as demonstrated by the URI /level/15/exec/-/buffers/assigned/dump; or (2) sending the router Cisco Discovery Protocol (CDP) packets with HTML payload that an administrator views via the CDP status pages. NOTE: these vectors were originally reported as being associated with the dump and packet options in /level/15/exec/-/show/buffers.

Source: NVD (National Vulnerability Database)

CVSS Information

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Type

N/A

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco IOS Web Server跨站脚本漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco IOS是Cisco设备所使用的操作系统。 Cisco IOS Web Server fot IOS 12.0(2a)中存在跨站脚本漏洞，这允许远程攻击者通过以下方式注入任意的Web脚本或HTML。 (1) 包含HTML的数据包； (2) 发送带有HTML负载的Cisco Discovery Protocol (CDP)数据包。注意：此漏洞原始报告中要求在/level/15/exec/-/show/buffers中启用dump 和 packet 功能。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
-	n/a	n/a	-

II. Public POCs for CVE-2005-3921

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2005-3921

请登录查看更多情报信息。

http://www.infohacking.com/INFOHACKING_RESEARCH/Our_Advisories/cisco/index.htmlx_refsource_MISC
http://securityreason.com/securityalert/227third-party-advisoryx_refsource_SREASON
http://www.securityfocus.com/bid/15602vdb-entryx_refsource_BID
http://secunia.com/advisories/17780third-party-advisoryx_refsource_SECUNIA
http://secunia.com/advisories/18528third-party-advisoryx_refsource_SECUNIA
http://www.securityfocus.com/bid/16291vdb-entryx_refsource_BID
http://securitytracker.com/id?1015275vdb-entryx_refsource_SECTRACK
http://www.vupen.com/english/advisories/2005/2657vdb-entryx_refsource_VUPEN
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A5867vdb-entrysignaturex_refsource_OVAL
http://www.cisco.com/warp/public/707/cisco-sa-20051201-http.shtmlvendor-advisoryx_refsource_CISCO
http://www.securityfocus.com/archive/1/417916/100/0/threadedmailing-listx_refsource_BUGTRAQ
http://www.idefense.com/intelligence/vulnerabilities/display.php?id=372third-party-advisoryx_refsource_IDEFENSE
https://nvd.nist.gov/vuln/detail/CVE-2005-3921

Same Patch Batch · n/a · 2005-11-30 · 26 CVEs total

CVE-2005-3916		WSN Forum Memberlist.PHP SQL注入漏洞
CVE-2005-3929		Xaraya xarMLSXML2PHPBackend.php目录遍历漏洞
CVE-2005-3928		QNX Neutrino本地权限提升漏洞
CVE-2005-3927		GuppY 多个目录遍历漏洞
CVE-2005-3926		GuppY error.php直接静态代码注入漏洞
CVE-2005-3925		Helpdesk Issue Manager多个SQL注入漏洞
CVE-2005-3924		Randshop index.php SQL注入漏洞
CVE-2005-3923		NetObjects Fusion rollbacklog.xml敏感信息泄露漏洞
CVE-2005-3922		Panda ZOO文件解压模块远程堆溢出漏洞
CVE-2005-3920		Babe Logger SQL注入漏洞
CVE-2005-3919		PBLang 跨站脚本漏洞
CVE-2005-3918		OvBB多个SQL注入漏洞
CVE-2005-3917		CommodityRentals Online Rental Business Creator脚本SQL注入漏洞
CVE-2005-3904		SUN JDK和JRE JMX未明漏洞
CVE-2005-3915		Clavister Client Web IKEv1拒绝服务漏洞
CVE-2005-3914		AFFcommerce 多个SQL注入漏洞
CVE-2005-3913		Virtual Hosting Control System域别名管理信息泄露漏洞
CVE-2005-3912		Perl Webmin miniserv.pl格式化字符串漏洞
CVE-2005-3911		BosDates多个SQL注入漏洞
CVE-2005-3910		Post Affiliate Pro index.php可能的目录遍历漏洞

Showing top 20 of 26 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: n/a

Same vendor: n/a

V. Comments for CVE-2005-3921

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2005-3921

I. Basic Information for CVE-2005-3921

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2005-3921

III. Intelligence Information for CVE-2005-3921

Same Patch Batch · n/a · 2005-11-30 · 26 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2005-3921

Leave a comment