Computer Security
[EN] securityvulns.ru no-pyccku


System Center Operations Manager crossite scripting
Published:11.08.2015
Source:
SecurityVulns ID:14628
Type:remote
Threat Level:
5/10
Description:Crossite scripting in web interface.
Affected:MICROSOFT : System Center 2012 Operations Manager
CVE:CVE-2015-2420 (Cross-site scripting (XSS) vulnerability in Microsoft System Center 2012 Operations Manager Gold before Rollup 8, SP1 before Rollup 10, and R2 before Rollup 7 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka "System Center Operations Manager Web Console XSS Vulnerability.")
Files:Microsoft Security Bulletin MS15-086 - Important Vulnerability in System Center Operations Manager Could Allow Elevation of Privilege (3075158)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod