RETIRED: VMware WebAccess Multiple Vulnerabilities

VMware WebAccess is prone to multiple vulnerabilities because it fails to sufficiently sanitize user-supplied data. The issues include cross-site scripting vulnerabilities and a URL forwarding vulnerability.

This BID is being retired; the following individual records now document these issues:

39106 VMware WebAccess '/ui/' Information Disclosure Vulnerability
39105 VMware WebAccess JSON Cross-site Scripting Vulnerabliity
39104 VMware WebAccess Virtual Machine Name Cross-site Scripting Vulnerability
39103 VMware WebAccess URL Forwarding Vulnerability


Privacy Statement
Copyright 2010, SecurityFocus