CVE-2008-2272

Properties

Published:
15.05.2008
Updated:
20.05.2008
Patch available:
Severity:
Medium
CVSS vector:
(AV:N/AC:M/Au:N/C:N/I:P/A:N)
Product:
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller
aruba_networks: aruba_mobility_controller

Vulnerability description

Mltiple cross-site scripting (XSS) vulnerabilities in the web interface in"Aruba Mobility Controller 2.4.8.x-FIPS, 2.5.5.x, 2.5.6.x, 3.1.1.x, 3.2.0.x, and 3.3.1.x allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References:

http://www.arubanetworks.com/support/alerts/aid-051408.asc: http://www.arubanetworks.com/support/alerts/aid-051408.asc
SECUNIA: http://secunia.com/advisories/30262