BugTraq
Back to list
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
PR07-26: Persistent XSS on Aruba 800 Mobility Controller's login page
Nov 15 2007 09:47PM
research procheckup com
Date Found: 17th July 2007
Vendor informed: 23rd July 2007
Confirmed by vendor: 13th September 2007
Description:
Aruba 800 is vulnerable to a persistent XSS on the administrator login screen.
An unauthenticated user can re-write the hidden parameter 'url' by requesting a link under th...
[ more ]
Privacy Statement
Copyright 2010, SecurityFocus
Vendor informed: 23rd July 2007
Confirmed by vendor: 13th September 2007
Description:
Aruba 800 is vulnerable to a persistent XSS on the administrator login screen.
An unauthenticated user can re-write the hidden parameter 'url' by requesting a link under th...
[ more ]