[2/5] HP OpenView Network Node Manager Unspecified Cross-Site Scripting

November 30th, 2007 by

[2/5] HP OpenView Network Node Manager Unspecified Cross-Site Scripting

:A vulnerability has been reported in HP OpenView Network Node Manager, which can be exploited by malicious people to conduct cross-site scripting attacks.Certain unspecified input is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script code in a user’s browser session in context of an affected site.The vulnerability is reported in versions 6.41, 7.01, and 7.51 running on HP-UX B.11.00, B.11.11, and B.11.23, Solaris, Windows NT, Windows 2000, Windows XP, and Linux.Solution:Apply patches. Please see the vendor’s advisory for details.http://support.openview.hp.com/patches/patch_index.jspProvided and/or discovered by:Reported by the vendor.Original Advisory:HPSBMA02283 SSRT071319:http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01218087

Original post by manisha

[2/5] HP OpenView Network Node Manager Unspecified Cross-Site Scripting

Related Articles:

[2/5] HP OpenView Network Node Manager Denial of Service

[3/5] HP OpenView Network Node Manager Multiple Vulnerabilities

[3/5] HP OpenView Network Node Manager Buffer Overflow Vulnerability

[3/5] HP OpenView Network Node Manager ovspmd.exe Buffer Overflow

[2/5] Hitachi JP1/Cm2/Network Node Manager Unspecified Cross-Site Scripting

Posted in Advisories - Exploits | | [2/5] HP OpenView Network Node Manager Unspecified Cross-Site Scripting

<< [2/5] OpenSSL FIPS Object Module PRNG Security Issue | [4/5] VLC Media Player ActiveX Plugin and FLAC Vulnerabilities >>

Cybertrion Systems

[2/5] HP OpenView Network Node Manager Unspecified Cross-Site Scripting

Categories

Archives:

Search:

Meta: