CVE-2005-1676

N/A Unknown
Published: May 20, 2005 Modified: April 16, 2026
View on NVD

Description

Multiple cross-site scripting (XSS) vulnerabilities in Groove Mobile Workspace in Groove Virtual Office before 3.1 build 2338, before 3.1a build 2364, and Groove Workspace before 2.5n build 1871 allow remote attackers to inject arbitrary web script or HTML via the (1) picture columns embedded within SharePoint lists or (2) drop-down menus in a SharePoint list.

AI Explanation

Get an AI-powered plain-language explanation of this vulnerability and remediation steps.

Login to generate AI explanation

References to Advisories, Solutions, and Tools

Patch Vendor Advisory Exploit Third Party Advisory
http://secunia.com/advisories/15421
Source: cve@mitre.org
Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/372618
Source: cve@mitre.org
Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/514386
Source: cve@mitre.org
Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/JGEI-6BCRCC
Source: cve@mitre.org
Third Party Advisory US Government Resource
http://secunia.com/advisories/15421
Source: af854a3a-2127-422b-91ae-364da2661108
Patch Vendor Advisory
http://www.kb.cert.org/vuls/id/372618
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/514386
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory US Government Resource
http://www.kb.cert.org/vuls/id/JGEI-6BCRCC
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party Advisory US Government Resource

8 reference(s) from NVD

Quick Stats

CVSS v3 Score
N/A / 10.0
EPSS (Exploit Probability)
3.6%
88th percentile
Exploitation Status
Not in CISA KEV

Affected Vendors

groove