Back to search
CVE-2007-5472
Published: Oct 22, 2007
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the Server component in CA Host-Based Intrusion Prevention System (HIPS) before 8.0.0.93 allows remote attackers to inject arbitrary web script or HTML via requests that are written to logs for later display in the log viewer.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
20071019 [CAID 35754]: CA Host-Based Intrusion Prevention System (CA HIPS) Server Vulnerability
mailing-list
x_refsource_BUGTRAQ
http://supportconnectw.ca.com/public/cahips/infodocs/cahips-secnotice.asp
x_refsource_CONFIRM
1018839
vdb-entry
x_refsource_SECTRACK
ca-hips-log-xss(37285)
vdb-entry
x_refsource_XF
ADV-2007-3547
vdb-entry
x_refsource_VUPEN
37998
vdb-entry
x_refsource_OSVDB
26134
vdb-entry
x_refsource_BID
27301
third-party-advisory
x_refsource_SECUNIA
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now