Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2662

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-2662
Last Modified 14 Aug 2012 12:00:00
Published 13 Aug 2012 04:55:05
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2662

Summary

Multiple cross-site scripting (XSS) vulnerabilities in Red Hat Certificate System (RHCS) before 8.1.1 and Dogtag Certificate System allow remote attackers to inject arbitrary web script or HTML via unspecified parameters to the (1) System Agent or (2) End Entity pages.

Vulnerable Systems

Application

  • Redhat Certificate System 7.1

  • Redhat Certificate System 7.2

  • Redhat Certificate System 7.3

  • Redhat Certificate System 8

  • Redhat Certificate System 8.0

  • Redhat Certificate System 8.1

  • Redhat Dogtag Certificate System


References

XF - rhcs-agentendentity-xss(77101)

SECTRACK - 1027284

BID - 54608

SECUNIA - 50013

REDHAT - RHSA-2012:1103

OSVDB - 84099


Last Updated: 27 May 2016 10:51:40