Back to search
CVE-2007-3623
Published: Jul 9, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager before 20070528 allows remote attackers to inject arbitrary web script or HTML via the Expect HTTP header.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
hitachi-hicommand-expectheader-xss(35286)
vdb-entry
x_refsource_XF
37848
vdb-entry
x_refsource_OSVDB
http://www.hitachi-support.com/security_e/vuls_e/HS07-017_e/index-e.html
x_refsource_CONFIRM
ADV-2007-2457
vdb-entry
x_refsource_VUPEN
24797
vdb-entry
x_refsource_BID
25973
third-party-advisory
x_refsource_SECUNIA
37849
vdb-entry
x_refsource_OSVDB
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now