Google Toolbar < Multiple Vulnerabilities

High Nessus Plugin ID 17656


The remote host contains an ActiveX control that is affected by an HTML injection vulnerability.


The remote host is running the Google Toolbar, a toolbar of Internet Explorer.

The remote version of this software is reportedly affected by an HTML injection vulnerability that could allow an attacker to execute a cross-site scripting attack.


Upgrade to Google Toolbar or later.

See Also

Plugin Details

Severity: High

ID: 17656

File Name: google_toobar_html_injection.nasl

Version: $Revision: 1.22 $

Type: local

Agent: windows

Family: Windows

Published: 2005/03/30

Modified: 2016/10/10

Dependencies: 13855

Risk Information

Risk Factor: High


Base Score: 7.5

Temporal Score: 7.1

Vector: CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:P

Temporal Vector: CVSS2#E:F/RL:U/RC:C

Vulnerability Information

CPE: cpe:/a:google:toolbar

Required KB Items: SMB/Registry/Enumerated

Exploit Available: true

Exploit Ease: Exploits are available

Patch Publication Date: 2004/09/04

Vulnerability Publication Date: 2002/08/08

Reference Information

CVE: CVE-2002-1442, CVE-2002-1444, CVE-2004-2475

BID: 5424, 5477, 11210

OSVDB: 7898, 10036, 10037