Unrated severityNVD Advisory· Published Nov 1, 2005· Updated Apr 16, 2026
CVE-2005-3424
CVE-2005-3424
Description
Cross-site scripting (XSS) vulnerability in GNUMP3D before 2.9.5 allows remote attackers to inject arbitrary web script or HTML via 404 error pages, a different vulnerability than CVE-2005-3425.
Affected products
15cpe:2.3:a:gnu:gnump3d:2.0:*:*:*:*:*:*:*+ 14 more
- cpe:2.3:a:gnu:gnump3d:2.0:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.1:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.2:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.3:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.4:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.5:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.5b:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.6:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.7:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.8:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.9:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.9.1:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.9.2:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.9.3:*:*:*:*:*:*:*
- cpe:2.3:a:gnu:gnump3d:2.9.4:*:*:*:*:*:*:*
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
8- lists.gnu.org/archive/html/gnump3d-users/2005-10/msg00013.htmlnvdPatch
- secunia.com/advisories/17351nvdPatchVendor Advisory
- www.debian.org/security/2005/dsa-877nvdPatchVendor Advisory
- www.osvdb.org/20359nvdPatch
- www.gnu.org/software/gnump3d/ChangeLognvd
- www.novell.com/linux/security/advisories/2005_28_sr.htmlnvd
- www.securityfocus.com/bid/15226nvd
- www.vupen.com/english/advisories/2005/2242nvd
News mentions
0No linked articles in our index yet.