Computer Security
[EN] securityvulns.ru no-pyccku


F5 FirePass 4100 crossite scripting
updated since 14.11.2007
Published:14.06.2009
Source:
SecurityVulns ID:8340
Type:remote
Threat Level:
5/10
Description:SSL VPN download_plugin.php3, page backurl parameter, my.logon.php3, my.activation.php3 crossite scripting.
Affected:F5 : FirePass 4100
 F5 : FirePass 5.4
 F5 : FirePass 5.5
 F5 : FirePass 6.0
Original documentdocumentProCheckUp Research, PR07-15: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.logon.php3' server-side script (30.11.2007)
 documentProCheckUp Research, PR07-14: Cross-site Scripting (XSS) / HTML injection on F5 FirePass 4100 SSL VPN 'my.activation.php3' server-side script (30.11.2007)
 documentProCheckUp Research, PR07-13: Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN 'download_plugin.php3' server-side script (14.11.2007)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod