mailing list archives
Persistent XSS and CSRF on network appliance [subject corrected :) ]
From: pagvac <unknown.pentester () gmail com>
Date: Wed, 27 Jun 2007 21:02:16 +0100
-----BEGIN PGP SIGNED MESSAGE-----
The HTTP interface of a network appliance has been researched and
found to be vulnerable to several persistent XSS and CSRF.
Such research was done by pdp (architect) and myself. We informed the
vendor and will publish the details when a fix is available.
The following is the MD5 hash for the advisory file.
$ md5sum.exe research.txt
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v220.127.116.11 (MingW32)
-----END PGP SIGNATURE-----
Full-Disclosure - We believe in it.
Hosted and sponsored by Secunia - http://secunia.com/
- Persistent XSS and CSRF on network appliance [subject corrected :) ] pagvac (Jun 27)