Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG before 4.2.6.1, and 5.x before 5.2.2.5, allows remote attackers to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
References
Link | Resource |
---|---|
http://secunia.com/advisories/27452 | Third Party Advisory |
http://www.bluecoat.com/support/securityadvisories/advisory_cross-site_scripting_vulnerability | Patch Vendor Advisory |
http://www.securitytracker.com/id?1018888 | Third Party Advisory VDB Entry |
http://www.vupen.com/english/advisories/2007/3678 | Third Party Advisory |
https://exchange.xforce.ibmcloud.com/vulnerabilities/38213 | Third Party Advisory VDB Entry |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2007-11-03T00:00:00
Updated: 2017-07-28T12:57:01
Reserved: 2007-11-02T00:00:00
Link: CVE-2007-5796
JSON object: View
NVD Information
Status : Analyzed
Published: 2007-11-03T00:46:00.000
Modified: 2018-10-26T14:17:18.827
Link: CVE-2007-5796
JSON object: View
Redhat Information
No data.
CWE