CVE-2007-5472

Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer.
Configurations

Configuration 1 (hide)

cpe:2.3:a:broadcom:host-based_intrusion_prevention_system:*:*:*:*:*:*:*:*

History

21 Nov 2024, 00:37

Type Values Removed Values Added
References () http://osvdb.org/37998 - () http://osvdb.org/37998 -
References () http://secunia.com/advisories/27301 - Patch, Vendor Advisory () http://secunia.com/advisories/27301 - Patch, Vendor Advisory
References () http://securitytracker.com/id?1018839 - () http://securitytracker.com/id?1018839 -
References () http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp - Patch () http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp - Patch
References () http://www.securityfocus.com/archive/1/482536/100/0/threaded - () http://www.securityfocus.com/archive/1/482536/100/0/threaded -
References () http://www.securityfocus.com/bid/26134 - () http://www.securityfocus.com/bid/26134 -
References () http://www.vupen.com/english/advisories/2007/3547 - () http://www.vupen.com/english/advisories/2007/3547 -
References () https://exchange.xforce.ibmcloud.com/vulnerabilities/37285 - () https://exchange.xforce.ibmcloud.com/vulnerabilities/37285 -

Information

Published : 2007-10-22 19:46

Updated : 2024-11-21 00:37


NVD link : CVE-2007-5472

Mitre link : CVE-2007-5472

CVE.ORG link : CVE-2007-5472


JSON object : View

Products Affected

broadcom

  • host-based_intrusion_prevention_system
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')