mailing list archives
Re: Mibew messenger multiple XSS
From: Kurt Seifried <kseifried () redhat com>
Date: Wed, 01 Feb 2012 14:45:10 -0700
On 01/31/2012 08:22 AM, Henri Salo wrote:
This seems to need 2012 CVE-identifier.
Codseq own advisory: http://www.codseq.it/advisories/mibew_messenger_multiple_xss
At the moment http://mibew.org/ does not work for me.
- Henri Salo
Please use CVE-2012-0829 for this issue.
P.S. for some reason OSVDB lists this as a CSRF issue (?) which is
mentioned in the advisory but not really shown.
Kurt Seifried Red Hat Security Response Team (SRT)