Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-0869

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-0869
Last Modified 29 Jan 2013 11:47:35
Published 25 Sep 2012 07:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-0869

Summary

Cross-site scripting (XSS) vulnerability in fup in Frams' Fast File EXchange (F*EX, aka fex) before 20120215 allows remote attackers to inject arbitrary web script or HTML via the id parameter.

Vulnerable Systems

Application

  • Ulli Horlacher Fex 20100208

  • Ulli Horlacher Fex 20110609

  • Ulli Horlacher Fex 20110610

  • Ulli Horlacher Fex 20110614

  • Ulli Horlacher Fex 20110615

  • Ulli Horlacher Fex 20110616

  • Ulli Horlacher Fex 20110621

  • Ulli Horlacher Fex 20110622

  • Ulli Horlacher Fex 20110627

  • Ulli Horlacher Fex 20110630

  • Ulli Horlacher Fex 20110701

  • Ulli Horlacher Fex 20110714

  • Ulli Horlacher Fex 20110716

  • Ulli Horlacher Fex 20110722

  • Ulli Horlacher Fex 20110726

  • Ulli Horlacher Fex 20110727

  • Ulli Horlacher Fex 20110730

  • Ulli Horlacher Fex 20110731

  • Ulli Horlacher Fex 20110803

  • Ulli Horlacher Fex 20110807

  • Ulli Horlacher Fex 20110808

  • Ulli Horlacher Fex 20110809

  • Ulli Horlacher Fex 20110810

  • Ulli Horlacher Fex 20110811

  • Ulli Horlacher Fex 20110813

  • Ulli Horlacher Fex 20110826

  • Ulli Horlacher Fex 20110829

  • Ulli Horlacher Fex 20110830

  • Ulli Horlacher Fex 20110901

  • Ulli Horlacher Fex 20110905

  • Ulli Horlacher Fex 20110906

  • Ulli Horlacher Fex 20110907

  • Ulli Horlacher Fex 20110919

  • Ulli Horlacher Fex 20110920

  • Ulli Horlacher Fex 20110921

  • Ulli Horlacher Fex 20110930

  • Ulli Horlacher Fex 20111003

  • Ulli Horlacher Fex 20111005

  • Ulli Horlacher Fex 20111013

  • Ulli Horlacher Fex 20111028

  • Ulli Horlacher Fex 20111102

  • Ulli Horlacher Fex 20111108

  • Ulli Horlacher Fex 20111115

  • Ulli Horlacher Fex 20111129

  • Ulli Horlacher Fex 20111230

  • Ulli Horlacher Fex 20111231

  • Ulli Horlacher Fex 2011205

  • Ulli Horlacher Fex 20120102

  • Ulli Horlacher Fex 20120106

  • Ulli Horlacher Fex 20120117

  • Ulli Horlacher Fex 20120125

  • Ulli Horlacher Fex 20120201

  • Ulli Horlacher Fex 20120202

  • Ulli Horlacher Fex 20120203

  • Ulli Horlacher Fex 20120204

  • Ulli Horlacher Fex 20120207


References

BID - 52085

MLIST - [oss-security] 20120223 Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2.

MLIST - [oss-security] 20120220 Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2.

MLIST - [oss-security] 20120220 Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2.

DEBIAN - DSA-2414

SECUNIA - 47971

OSVDB - 79420

CONFIRM - http://fex.rus.uni-stuttgart.de/fex.html

BUGTRAQ - 20120220 Re: Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2.

BUGTRAQ - 20120220 Vulnerabilitites in Debian F*EX <= 20100208 and F*EX 20111129-2.

XF - fastfileexchange-fup-id-xss(78966)


Last Updated: 27 May 2016 11:00:48