setroubleshoot is vulnerable to cross-site scripting (XSS). The vulnerability exists as a flaw was found in the way sealert displayed records from the setroubleshoot database as unescaped HTML. An local unprivileged attacker could cause AVC denial events with carefully crafted process or file names, injecting arbitrary HTML tags into the logs, which could be used as a scripting attack, or to confuse the user running sealert.
CPE | Name | Operator | Version |
---|---|---|---|
setroubleshoot | eq | 1.8.11__4.el5 | |
setroubleshoot | eq | 1.8.11__4.el5 |
secunia.com/advisories/30339
securitytracker.com/id?1020078
www.redhat.com/security/updates/classification/#moderate
www.redhat.com/support/errata/RHSA-2008-0061.html
www.securityfocus.com/bid/29324
access.redhat.com/errata/RHSA-2008:0061
bugzilla.redhat.com/show_bug.cgi?id=288271
exchange.xforce.ibmcloud.com/vulnerabilities/42592
oval.cisecurity.org/repository/search/definition/oval%3Aorg.mitre.oval%3Adef%3A10455