Computer Security
[EN] securityvulns.ru no-pyccku


HP Palm WebOS crossite scripting
Published:12.08.2011
Source:
SecurityVulns ID:11856
Type:client
Threat Level:
5/10
Description:Crossite scripting in Contacts and Calendar applications.
Affected:HP : webOS 3.0
CVE:CVE-2011-2409 (Cross-site scripting (XSS) vulnerability in the Calendar application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
 CVE-2011-2408 (Cross-site scripting (XSS) vulnerability in the Contacts application in HP Palm webOS 3.x before 3.0.2 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.)
Original documentdocumentHP, [security bulletin] HPSBGN02696 SSRT100590 rev.1 - HP webOS Calendar Application, Remote Execution of Arbitrary Code (12.08.2011)
 documentHP, [security bulletin] HPSBGN02694 SSRT100586 rev.1 - HP webOS Contacts Application, Remote Execution of Arbitrary Code (12.08.2011)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod