Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2007-5796

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2007-5796
Last Modified 07 Mar 2011 10:01:19
Published 02 Nov 2007 08:46:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2007-5796

Summary

Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.

Vulnerable Systems


References

CONFIRM - http://www.bluecoat.com/support/securityadvisories/advisory_cross-site_scripting_vulnerability

SECUNIA - 27452

VUPEN - ADV-2007-3678

XF - proxysg-management-console-xss(38213)

SECTRACK - 1018888


Last Updated: 27 May 2016 10:46:16