Podatność CVE-2008-2167

Podatność CVE-2008-2167

Publikacja: 2008-05-13 Modyfikacja: 2012-02-12

Opis:

	Tytuł	Autor	Data
Low	ZYWALL Referer Header XSS Vulnerability	Deniz Cevik	14.05.2008

Typ:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
4.3/10	2.9/10	8.6/10

Affected software
Zyxel -> Zywall 100

http://lists.grok.org.uk/pipermail/full-disclosure/2008-May/062152.html

http://securityreason.com/securityalert/3869

http://www.securityfocus.com/archive/1/491818/100/0/threaded

http://www.securityfocus.com/bid/29110

http://www.securitytracker.com/id?1020000

http://www.vupen.com/english/advisories/2008/1501/references

https://exchange.xforce.ibmcloud.com/vulnerabilities/42282