28 matches found
CVE-2012-4982
Open redirect vulnerability in assets/login on the Forescout CounterACT NAC device before 7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the a parameter...
Forescout CounterACT - a Open Redirection
Forescout CounterACT - a Open Redirection source: https://www.securityfocus.com/bid/56687/info Forescout CounterACT is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks...
Forescout CounterACT - 'a' Open Redirection
source: https://www.securityfocus.com/bid/56687/info Forescout CounterACT is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks are possible. Forescout CounterACT 6.3.4....
CVE-2012-1825
Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...
CVE-2012-1825
Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...
CVE-2012-1825
The CVE-2012-1825 entry concerns XSS vulnerabilities in the ForeScout CounterACT appliance (software 6.3.3.2–6.3.4.10) where the status program’s web interface is vulnerable. Specifically, attackers can inject arbitrary script via (1) loginname in a forgotpass action or (2) username, enabling ref...
ForeScout CounterACT reflected XSS vulnerability
Overview The ForeScout CounterACT appliance contains reflected cross-site scripting XSS vulnerabilities. Description The web interface of the ForeScout CounterACT appliance contains reflected XSS vulnerabilities CWE-79. The following are a couple...