Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2012-2769

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2012-2769
Last Modified 16 Aug 2012 12:00:00
Published 15 Aug 2012 05:55:01
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2012-2769

Summary

Multiple cross-site scripting (XSS) vulnerabilities in the topic administration page in the Extension::MobileUI extension before 1.02 for Best Practical Solutions RT 3.8.x and in Best Practical Solutions RT before 4.0.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Vulnerable Systems

Application

  • Jesse Vincent Extension%3a%3amobileui 1.01


References

XF - extensionmobileui-unspec-xs(77211)

BID - 54684

SECUNIA - 50010

MLIST - [rt-announce] 20120725 Security vulnerabilities in three commonly deployed RT extensions


Last Updated: 27 May 2016 10:56:37