CVE-2007-5496

2008-05-23T15:32:00
ID CVE-2007-5496
Type cve
Reporter cve@mitre.org
Modified 2017-09-29T01:29:00

Description

Cross-site scripting (XSS) vulnerability in setroubleshoot 2.0.5 allows local users to inject arbitrary web script or HTML via a crafted (1) file or (2) process name, which triggers an Access Vector Cache (AVC) log entry in a log file used during composition of HTML documents for sealert.