Required CVE Record Information
Description
Centrinity FirstClass 8.3 and earlier, and Server and Internet Services 8.0 and earlier, do not properly handle a URL with a null ("%00") character, which allows remote attackers to conduct cross-site scripting (XSS) attacks. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
References 4 Total
- osvdb.org: 36415 vdb-entry
- securityfocus.com: 24204 vdb-entry
- secunia.com: 25447 third-party-advisory
- exchange.xforce.ibmcloud.com: firstclass-sequences-xss(34534) vdb-entry
Updated:
This container includes required additional information provided by the CVE Program for this vulnerability.
References 4 Total
- osvdb.org: 36415 vdb-entryx_transferred
- securityfocus.com: 24204 vdb-entryx_transferred
- secunia.com: 25447 third-party-advisoryx_transferred
- exchange.xforce.ibmcloud.com: firstclass-sequences-xss(34534) vdb-entryx_transferred