Info

Disclosure

Aug 04, 2005

Discovery

Unknown

Dates

Exploit

Aug 04, 2005

Solution

Unknown

Description

Contelligent External Browser contains a flaw related to the way the Contelligent client processes 'actions' that may allow an attacker to perform an XSS attack. No further details have been provided.

Classification

Location: Remote/Network Access Required
Attack Type: Input Manipulation
Impact: Loss of Integrity
Exploit: Exploit Available
Disclosure: OSVDB Verified
OSVDB: Web Related

Solution

Upgrade to version 9.0.18 or higher, as it has been reported to fix this vulnerability. An upgrade is required as there are no known workarounds.

Products

C:1-Financial Services GmbH	Contelligent	9.0.16
		9.0.15
		9.0.17
		9.0.6

References

Vendor URL: http://www.contelligent.com/
Vendor Specific News/Changelog Entry: http://www.contelligent.com/contell/cms/c1web/contelligent/site/contelligent/down ......

Credit

Unknown or Incomplete

Direct URL: http://osvdb.org/36218

Info

Disclosure

Discovery

Dates

Exploit

Solution

Description

Classification

Solution

Products

C:1-Financial Services GmbH

Contelligent

References

Credit