CGI:IRC XSS issue (CVE-2011-0050)

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Subject: CGI:IRC XSS issue (CVE-2011-0050)
From: David Leadbeater <dgl@xxxxxx>
Date: Wed, 9 Feb 2011 11:41:45 +0000
User-agent: Mutt/1.5.17+20080114 (2008-01-14)

Michael Brooks (Sitewatch) discovered an XSS issue in the nonjs
interface that allowed HTML injection via a crafted parameter.

0.5.10 is now available. This is actually just 0.5.9 with the
following fix:

- CVE-2011-0050: XSS in R param in nonjs interface

David

Prev by Date: iDefense Security Advisory 02.08.11: Adobe Flash Player ActionScript Memory Corruption Vulnerability
Next by Date: Re: Microsoft Terminal Services vulnerable to MITM-attacks.
Previous by thread: iDefense Security Advisory 02.08.11: Adobe Flash Player ActionScript Memory Corruption Vulnerability
Next by thread: [HITB-Announce] HITB Magazine Issue 005 Released
Index(es):
- Date
- Thread

[Index of Archives] [Linux Security] [Netfilter] [PHP] [Yosemite News] [Linux Kernel]

Powered by Linux