Back to search
CVE-2008-1503
Published: Mar 25, 2008
Modified: Aug 7, 2024
PUBLISHED
Description
Cross-site scripting (XSS) vulnerability in the web management interface in F5 BIG-IP 9.4.3 allows remote attackers to inject arbitrary web script or HTML via (1) the name of a node object, or the (2) sysContact or (3) sysLocation SNMP configuration field, aka "Audit Log XSS." NOTE: these issues might be resultant from cross-site request forgery (CSRF) vulnerabilities.
| Vendor | Product | Versions |
|---|---|---|
n/a | n/a | affected n/a |
References
3778
third-party-advisory
x_refsource_SREASON
f5bigip-auditlog-xss(41440)
vdb-entry
x_refsource_XF
20080323 F5 BIG-IP Web Management Audit Log XSS
mailing-list
x_refsource_BUGTRAQ
28416
vdb-entry
x_refsource_BID
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now