[Bug 372037] New: VUL-0: yet another nagios XSS
https://bugzilla.novell.com/show_bug.cgi?id=372037 User lnussel@novell.com added comment https://bugzilla.novell.com/show_bug.cgi?id=372037#c2 Summary: VUL-0: yet another nagios XSS Product: openSUSE 10.3 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Major Priority: P5 - None Component: Security AssignedTo: olh@novell.com ReportedBy: lnussel@novell.com QAContact: qa@suse.de CC: security-team@suse.de Found By: --- Your friendly security team received the following report via mitre. Please respond ASAP. The issue is public. Name: CVE-2008-1360 Cross-site scripting (XSS) vulnerability in Nagios before 2.11 allows remote attackers to inject arbitrary web script or HTML via unknown vectors to unspecified CGI scripts, a different issue than CVE-2007-5624. Reference: : http://www.nagios.org/development/changelog.php#2x_branch Reference: BID: http://www.securityfocus.com/bid/28250 Reference: SECUNIA: http://secunia.com/advisories/29363 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=372037
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=372037#c1
--- Comment #1 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=372037
User lnussel@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=372037#c2
--- Comment #2 from Ludwig Nussel
https://bugzilla.novell.com/show_bug.cgi?id=372037
User meissner@novell.com added comment
https://bugzilla.novell.com/show_bug.cgi?id=372037#c3
Marcus Meissner
participants (1)
-
bugzilla_noreply@novell.com