4 matches found
K8280: Cross-site scripting vulnerabilities in BIG-IP Configuration utility CVE-2008-0265
Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...
F5 Networks BIG-IP : XSS vulnerabilities in BIG-IP Configuration utility (SOL8280)
The remote BIG-IP device is missing a patch required by a security advisory. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from F5 Networks BIG-IP Solution SOL8280. The text description of this plugin is C F5 Networks...
SOL8280 - Cross-site scripting vulnerabilities in BIG-IP Configuration utility CVE-2008-0265
The vulnerability is only available to authenticated users. Theoretically, a malicious site could use another tab in an admin user's browser to hit a list URL and cause the admin user's Configuration utility to render malicious JavaScript in the admin user's browser. The results are not saved...
CVE-2008-0265
F5 BIG-IP TMUI (Configuration utility) contains multiple XSS vulnerabilities (CVE-2008-0265) in the SearchString parameter across several list JSPs (list_system.jsp, list_pktfilter.jsp, list_ltm.jsp, resources_audit.jsp, list_asm.jsp, and list.jsp in various dirs). The issue affects BIG-IP LTM/GT...