Oval Definition:oval:org.mitre.oval:def:5877
Revision Date:2015-04-20Version:25
Title:HP-UX Running Netscape / Red Hat Directory Server, Remote Cross Site Scripting (XSS) or Remote Denial of Service (DoS)
Description:Multiple cross-site scripting (XSS) vulnerabilities in the adminutil library in the Directory Server Administration Express and Directory Server Gateway (DSGW) web interface in Red Hat Directory Server 7.1 before SP7 and 8 EL4 and EL5, and Fedora Directory Server, allow remote attackers to inject arbitrary web script or HTML via input values that use % (percent) escaping.
Family:unixClass:vulnerability
Status:ACCEPTEDReference(s):CVE-2008-2929
Platform(s):HP-UX 11
Product(s):
Definition Synopsis
  • Criteria meets HP Security Bulletin HPSBUX02354
  • platforms
  • HP-UX B.11.23
  • OR HP-UX B.11.31
  • OR HP-UX B.11.11
  • AND filesets tests
  • NetscapeDirSvr7.NDS-SLAPD version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-SLCLNT version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-ADM version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-BASE version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-BSCLNT version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-BSJRE version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-NC version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-NSPERL version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-PERLDAP version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-SVCORE version is less than B.07.10.50
  • OR NetscapeDirSvr7.NDS-RUN version is less than B.07.10.50
  • OR Criteria meets HP Security Bulletin HPSBUX02354
  • platforms
  • HP-UX B.11.11
  • OR HP-UX B.11.23
  • AND filesets tests
  • NetscapeDirSvr6.NDS-SLCLNT version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-SVCORE version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-ADM version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-BASE version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-BSCLNT version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-BSJRE version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-NC version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-NSPERL version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-PERLDAP version is less than B.06.21.70
  • OR NetscapeDirSvr6.NDS-SLAPD version is less than B.06.21.70
    • BACK