Lucene search
PRIOn knowledge basePRION:CVE-2008-1168HistoryMar 05, 2008 - 11:44 p.m.
Cross site scripting
2008-03-0523:44:00
PRIOn knowledge base
www.prio-n.com
1
Cross-site scripting (XSS) vulnerability in Squid Analysis Report Generator (Sarg) 2.2.3.1 allows remote attackers to inject arbitrary web script or HTML via the User-Agent header, which is not properly handled when displaying the Squid proxy log. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
| CPE | Name | Operator | Version |
|---|---|---|---|
| squid_analysis_report_generator | eq | 2.2.3.1 |
References
secunia.com/advisories/28668
secunia.com/advisories/29309
secunia.com/advisories/29500
sourceforge.net/project/shownotes.php?release_id=581509
www.gentoo.org/security/en/glsa/glsa-200803-21.xml
www.mandriva.com/security/advisories?name=MDVSA-2008:079
www.securityfocus.com/bid/28077
www.vupen.com/english/advisories/2008/0750/references
exchange.xforce.ibmcloud.com/vulnerabilities/40972
Related
ubuntucve
ubuntucve
CVE-2008-1168
2008-03-05 00:00:00
CVE-2008-7250
2009-12-30 00:00:00
cvelist
cvelist
CVE-2008-1168
2008-03-05 23:00:00
CVE-2008-7250
2022-10-03 16:13:53
cve
cve
CVE-2008-1168
2008-03-05 23:44:00
CVE-2008-7250
2022-10-03 16:13:53
debiancve
debiancve
CVE-2008-1168
2008-03-05 23:44:00
CVE-2008-7250
2022-10-03 16:13:53
nvd
nvd
CVE-2008-1168
2008-03-05 23:44:00
CVE-2008-7250
2009-12-30 22:30:00
openvas
openvas
Mandriva Update for sarg MDVSA-2008:079 (sarg)
2009-04-09 00:00:00
Mandriva Update for sarg MDVSA-2008:079 (sarg)
2009-04-09 00:00:00
Gentoo Security Advisory GLSA 200803-21 (sarg)
2008-09-24 00:00:00
prion
prion
Cross site scripting
2009-12-30 22:30:00
securityvulns
securityvulns
[ GLSA 200803-21 ] Sarg: Remote execution of arbitrary code
2008-03-13 00:00:00
Squid Analysis Report Generator buffer overflow
2008-03-13 00:00:00
nessus
nessus
GLSA-200803-21 : Sarg: Remote execution of arbitrary code
2008-03-13 00:00:00
Mandriva Linux Security Advisory : sarg (MDVSA-2008:079)
2009-04-23 00:00:00
gentoo
gentoo
Sarg: Remote execution of arbitrary code
2008-03-12 00:00:00