Cross-site scripting (XSS) vulnerability in Microsoft System Center Operations Manager 2007 SP1 and R2 allows remote attackers to inject arbitrary web script or HTML via crafted input, aka "System Center Operations Manager Web Console XSS Vulnerability," a different vulnerability than CVE-2013-0010.
References
Link | Resource |
---|---|
http://www.us-cert.gov/cas/techalerts/TA13-008A.html | Third Party Advisory US Government Resource |
https://oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A15760 | |
https://docs.microsoft.com/en-us/security-updates/securitybulletins/2013/ms13-003 |
Configurations
Configuration 1 (hide)
|
Information
Published : 2013-01-09 10:09
Updated : 2018-10-12 15:03
NVD link : CVE-2013-0009
Mitre link : CVE-2013-0009
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
microsoft
- system_center_operations_manager