Showing 1 - 1 of 1

CVE-2010-1137

Status Candidate

Overview

Cross-site scripting (XSS) vulnerability in WebAccess in VMware VirtualCenter 2.0.2 and 2.5 and VMware ESX 3.0.3 and 3.5, and the Server Console in VMware Server 1.0, allows remote attackers to inject arbitrary web script or HTML via the name of a virtual machine.

Related Files

VMware Security Advisory 2010-0005: Posted Mar 31, 2010; Authored by VMware | Site vmware.com; VMware Security Advisory - A cross-site scripting vulnerability in WebAccess allows for disclosure of sensitive information. The flaw is due to insufficient verification of certain parameters which may lead to redirection of a user's requests. This vulnerability can only be exploited if the attacker tricks the WebAccess user into clicking a malicious link and the attacker has control of a server on the same network as the system where WebAccess is being used.; tags | advisory, xss; advisories | CVE-2009-2277, CVE-2010-1137, CVE-2010-0686; SHA-256 | 85919e5b4cda7ee681c52ebaf6b744efd4562b046b0744f8b117c70cc911302f; Download | Favorite | View

Page 1 of 1 Back 1 Next

Top Authors In Last 30 Days

Red Hat 229 files
Ubuntu 95 files
Gentoo 33 files
Debian 23 files
Google Security Research 17 files
Mirabbas Agalarov 16 files
indoushka 11 files
CraCkEr 11 files
nu11secur1ty 9 files
Apple 9 files

File Archives

Systems

AIX (428)
Apple (1,978)
BSD (373)
CentOS (57)
Cisco (1,920)
Debian (6,751)
Fedora (1,691)
FreeBSD (1,244)
Gentoo (4,321)
HPUX (879)
iOS (344)
iPhone (108)
IRIX (220)
Juniper (67)
Linux (45,759)
Mac OS X (685)
Mandriva (3,105)
NetBSD (256)
OpenBSD (482)
RedHat (13,304)
Slackware (941)
Solaris (1,610)
SUSE (1,444)
Ubuntu (8,618)
UNIX (9,235)
UnixWare (186)
Windows (6,555)
Other

CVE-2010-1137

Overview

Related Files

File Archive:

May 2023

Top Authors In Last 30 Days

File Tags

File Archives

Systems