Computer Security

Security Advisory: Blue Coat xss
back  news / advisories / forum / software / advertising / search / exploits  forward
[EN] securityvulns.ru
no-pyccku



Related information

  Daily web applications security vulnerabilities summary (PHP, ASP, JSP, CGI, Perl)

  Xss In Datalife Engine CMS 7.2

  [MajorSecurity Advisory #54]xt:Commerce - Cross Site Scripting and Session Fixation Issues

  [MajorSecurity Advisory #53]BLUEPAGE CMS - Cross Site Scripting and Session Fixation Issues

  Cross Site Scripting (XSS) Vulnerabilitiy in fuzzylime (cms) >=3.02, CVE-2008-3098

From:jplopezy_(at)_gmail.com <jplopezy_(at)_gmail.com>
Date:24.09.2008
Subject:Blue Coat xss


There is a security issue in the blue coat.
The problem lies in the "Web Filter", which lets you execute an XSS.
This only affects the Internet Explorer browser. "

as a result, could jump the antivirus scan or make spoofing.

POC

http://www.example.com/file.exe?<script>(1)</script>

Juan Pablo Lopez Yacubian
About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod

 
 


Rating@Mail.ru
test server