11 matches found
Linux Distros Unpatched Vulnerability : CVE-2010-4647
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Multiple cross-site scripting XSS vulnerabilities in the Help Contents web application aka the Help Server in Eclipse IDE before 3.6.2 allow remote attackers to...
RHEL 5 : eclipse (Unpatched Vulnerability)
The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - eclipse: Help Content web application vulnerable to multiple XSS CVE-2010-4647 - Multiple cross-site...
Oracle Linux 6 : eclipse (ELSA-2011-0568)
The remote Oracle Linux 6 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2011-0568 advisory. eclipse: 1:3.6.1-6.13 - Drop patch to remove ant-trax needed by test runs. 1:3.6.1-6.12 - Add two upstream patches to allow for running SDK JUnit tests...
Security Bulletin: Multiple security vulnerabilities in IBM Sales Center for WebSphere Commerce (CVE-2008-7271, CVE-2010-4647, CVE-2012-0186, CVE-2012-0191, CVE-2012-2159, CVE-2012-2161)
Abstract Multiple security vulnerabilities have been identified in IBM Sales Center for WebSphere Commerce V6.0 and V7.0 Content VULNERABILITY DETAILS – Directory Traversal CVE ID: CVE-2012-0186 DESCRIPTION: Specially crafted URLs can be sent to the Eclipse Help component of IBM Sales Center for...
RHEL 6 : eclipse (RHSA-2011:0568)
The remote Redhat Enterprise Linux 6 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2011:0568 advisory. The Eclipse software development environment provides a set of tools for C/C++ and Java development. A cross-site scripting XSS flaw was found in the...
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
Check for the Version of eclipse OpenVAS Vulnerability Test Mandriva Update for eclipse MDVSA-2011:032 eclipse Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it unde...
Mandriva Update for eclipse MDVSA-2011:032 (eclipse)
The remote host is missing an update for the SPDX-FileCopyrightText: 2011 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptxrefname:"URL",...
Mandriva Linux Security Advisory : eclipse (MDVSA-2011:032)
A vulnerability has been found and corrected in eclipse : Multiple cross-site scripting XSS vulnerabilities in the Help Contents web application aka the Help Server in Eclipse IDE before 3.6.2 allow remote attackers to inject arbitrary web script or HTML via the query string to 1 help/index.jsp o...
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in the Help Contents web application aka the Help Server in Eclipse IDE, possibly 3.3.2, allow remote attackers to inject arbitrary web script or HTML via 1 the searchWord parameter to help/advanced/searchView.jsp or 2 the workingSet parameter in ...
CVE-2010-4647
The CVE-2010-4647 issue affects the Eclipse IDE Help Contents (Help Server) prior to 3.6.2. It enables remote XSS by injecting arbitrary web script/HTML via the query string to help/index.jsp or help/advanced/content.jsp, due to improper input handling in the Help Contents web app. Impact is limi...
Fedora 13 : eclipse-3.5.2-4.fc13 (2010-18990)
Fix junit runner problem Eclipse help webapp XSS vulnerability fix. See Redhat Bugzilla 661901 and Eclipse Bugzilla 329582. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and...