Info

Last Modified

9 days ago

Percent Complete

40%

Disclosure

Jan 28, 2005

Discovery

Dec 14, 2004

Dates

Exploit

Jan 28, 2005

Solution

Unknown

This Entry needs help! It is only 40% Complete. Click the edit link above to add more information.

Contributing is fast and easy, and benefits the entire security community.

Description

(Description Provided by CVE) : Cross-site scripting (XSS) vulnerability in useredit_account.wdm in Alt-N WebAdmin 3.0.4 allows remote attackers to inject arbitrary web script or HTML via the user parameter.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
OSVDB: Web Related

Solution

Currently, there are no known workarounds or upgrades to correct this issue. However, Alt-N has released a patch to address this vulnerability.

Products

Unknown or Incomplete

References

Related OSVDB ID: 13323 13324
Secunia Advisory ID: 14079
CVE ID: 2005-0317 (see also: NVD)
Mail List Post: http://archives.neohapsis.com/archives/bugtraq/2005-01/0313.html
Vendor URL: http://www.altn.com/products/default.asp?product%5Fid=WebAdmin
Other Advisory URL: http://www.kamborio.com/?Section=Articles&Mode=select&ID=56

Tools & Filters

Nessus	16271

Manual Testing Notes

Credit

Unknown or Incomplete

Blogs

Provided by Technorati

None found at this time

Comments

Add Comment Hide Add Comment

No Comments.

DONATE NOW!

User Status

Account
- Login
- Sign-Up

Quick Searches