2 matches found
Security Bulletin: Security Network Protection is affected by a cross-site scripting vulnerability (CVE-2013-5442)
Summary IBM Security Network Protection is affected by a cross-site scripting vulnerability that could be used to impersonate a legitimate user, allowing the impersonator to alter user records, and to perform transactions as that user. Vulnerability Details The IBM Security Network Protection Loc...
CVE-2013-5442
CVE-2013-5442 is an XSS vulnerability affecting the Local Management Interface (LMI) of IBM Security Network Protection on XGS 5100 devices running firmware 5.1 and 5.1.1 (prior to 5.1.0.6 and 5.1.1.1, respectively). The issue allows remote attackers to inject arbitrary web script or HTML via uns...