Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-1716

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-1716
Last Modified 21 Sep 2011 11:30:45
Published 18 Apr 2011 02:55:02
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-1716

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Xymon

  • Xymon 4.0

  • Xymon 4.0.1

  • Xymon 4.0.2

  • Xymon 4.0.3

  • Xymon 4.0.4

  • Xymon 4.1.0

  • Xymon 4.1.1

  • Xymon 4.1.2

  • Xymon 4.2.0

  • Xymon 4.2.2

  • Xymon 4.2.3

  • Xymon 4.3.0


References

CONFIRM - http://xymon.svn.sourceforge.net/viewvc/xymon/branches/4.3.2/Changes?revision=6673&view=markup

XF - xymonmonitor-multiple-xss(66542)

BID - 47156

BUGTRAQ - 20110404 Re: Xymon monitor cross-site scripting vulnerabilities

BUGTRAQ - 20110403 Xymon monitor cross-site scripting vulnerabilities

SREASON - 8209

SECUNIA - 44036

OSVDB - 71489


Last Updated: 27 May 2016 10:56:24