ID
VAR-200911-0346
TITLE
HP ProCurve Switch Management Interface Multiple HTML Injection Vulnerabilities
Trust: 0.3
sources:
BID: 37001
DESCRIPTION
HP ProCurve Switch web management interface is prone to multiple HTML-injection vulnerabilities. Attacker-supplied HTML and script code would execute in the context of the affected site, potentially allowing the attacker to steal cookie-based authentication credentials or to control how the site is rendered to the user; other attacks are also possible.
Trust: 0.3
sources:
BID: 37001
AFFECTED PRODUCTS
| vendor: | hp | model: | procurve switch 5308xl j4819a | scope: | - | version: | - | Trust: 0.3 |
| vendor: | hp | model: | procurve switch j4813a | scope: | eq | version: | 2524 | Trust: 0.3 |
| vendor: | hp | model: | procurve switch | scope: | eq | version: | 2524 | Trust: 0.3 |
| vendor: | hp | model: | procurve switch 5308xl e.08.42 | scope: | - | version: | - | Trust: 0.3 |
| vendor: | hp | model: | procurve switch 5308xl | scope: | - | version: | - | Trust: 0.3 |
| vendor: | hp | model: | procurve switch i.07.31 | scope: | eq | version: | 2824 | Trust: 0.3 |
| vendor: | hp | model: | procurve switch | scope: | eq | version: | 2824 | Trust: 0.3 |
| vendor: | hp | model: | procurve switch f.05.50 | scope: | eq | version: | 2524 | Trust: 0.3 |
sources:
BID: 37001
THREAT TYPE
network
Trust: 0.3
sources:
BID: 37001
TYPE
Input Validation Error
Trust: 0.3
sources:
BID: 37001
EXTERNAL IDS
| db: | BID | id: | 37001 | Trust: 0.3 |
sources:
BID: 37001
REFERENCES
| url: | http://www.procurve.com/ | Trust: 0.3 |
sources:
BID: 37001
CREDITS
Bugs NotHugs
Trust: 0.3
sources:
BID: 37001
SOURCES
| db: | BID | id: | 37001 |
LAST UPDATE DATE
2022-05-17T01:38:40.563000+00:00
SOURCES UPDATE DATE
| db: | BID | id: | 37001 | date: | 2009-11-12T16:36:00 |
SOURCES RELEASE DATE
| db: | BID | id: | 37001 | date: | 2009-11-11T00:00:00 |