VYPR
Unrated severityNVD Advisory· Published Dec 6, 2004· Updated Jun 16, 2026

CVE-2004-0606

CVE-2004-0606

Description

Cross-site scripting (XSS) vulnerability in Infoblox DNS One running firmware 2.4.0-8 and earlier allows remote attackers to execute arbitrary scripts as other users via the (1) CLIENTID or (2) HOSTNAME option of a DHCP request.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

3
  • cpe:2.3:h:infoblox:dns_one_appliance:2.4.0.8:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:h:infoblox:dns_one_appliance:2.4.0.8:*:*:*:*:*:*:*
    • cpe:2.3:h:infoblox:dns_one_appliance:2.4.0.8a:*:*:*:*:*:*:*
  • Infoblox/DNS Onellm-fuzzy
    Range: <=2.4.0-8

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.