Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2011-2133

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2011-2133
Last Modified 04 Oct 2011 10:54:39
Published 11 Aug 2011 06:55:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2011-2133

Summary

Cross-site scripting (XSS) vulnerability in Adobe RoboHelp 8 and 9 before 9.0.1.262, and RoboHelp Server 8 and 9, allows remote attackers to inject arbitrary web script or HTML via the URI, related to template_stock/whutils.js.

Vulnerable Systems

Application

  • Adobe Robohelp 8

  • Adobe Robohelp 9

  • Adobe Robohelp 9.0.1.232

  • Adobe Robohelp Server 8

  • Adobe Robohelp Server 9


References

CERT - TA11-222A

CONFIRM - http://www.adobe.com/support/security/bulletins/apsb11-23.html

SREASON - 8334


Last Updated: 27 May 2016 10:56:56