RSS   Vulnerabilities for 'Mc-800'   RSS

2007-11-20
 
CVE-2007-6054

CWE-79
 

 
Cross-site scripting (XSS) vulnerability in the login page in the management interface in the Aruba 800 Mobility Controller 2.5.4.18 and earlier, and 2.4.8.6-FIPS and earlier, allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO to the /screens URI, related to the url variable.

 

 >>> Vendor: Aruba networks 3 Products
Mc-800
Aruba mobility controllers
Aruba mobility controller


Copyright 2024, cxsecurity.com

 

Back to Top