Vulnerability Description
Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Hp | Hp-Ux | 11.11 |
Related Weaknesses (CWE)
References
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01183265
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01183597Patch
- http://osvdb.org/37603
- http://secunia.com/advisories/27067PatchVendor Advisory
- http://www.securityfocus.com/bid/25953
- http://www.securitytracker.com/id?1018775
- http://www.vupen.com/english/advisories/2007/3387Vendor Advisory
- https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01183265
- http://h20000.www2.hp.com/bizsupport/TechSupport/Document.jsp?objectID=c01183597Patch
- http://osvdb.org/37603
- http://secunia.com/advisories/27067PatchVendor Advisory
- http://www.securityfocus.com/bid/25953
- http://www.securitytracker.com/id?1018775
- http://www.vupen.com/english/advisories/2007/3387Vendor Advisory
FAQ
What is CVE-2007-5302?
CVE-2007-5302 is a vulnerability with a CVSS score of 4.3 (MEDIUM). Multiple cross-site scripting (XSS) vulnerabilities in HP System Management Homepage (SMH) in HP-UX B.11.11, B.11.23, and B.11.31, and SMH before 2.1.10 for Linux and Windows, allow remote attackers t...
How severe is CVE-2007-5302?
CVE-2007-5302 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-5302?
Check the references section above for vendor advisories and patch information. Affected products include: Hp Hp-Ux.