Oval Definition:oval:org.opensuse.security:def:20083422
Revision Date:2017-09-27Version:1
Title:CVE-2008-3422
Description:

Multiple cross-site scripting (XSS) vulnerabilities in the ASP.net class libraries in Mono 2.0 and earlier allow remote attackers to inject arbitrary web script or HTML via crafted attributes related to (1) HtmlControl.cs (PreProcessRelativeReference), (2) HtmlForm.cs (RenderAttributes), (3) HtmlInputButton (RenderAttributes), (4) HtmlInputRadioButton (RenderAttributes), and (5) HtmlSelect (RenderChildren).
Family:unixClass:vulnerability
Status:Reference(s):CVE-2008-3422
Platform(s):Novell Linux Desktop 9 for x86
Novell Linux Desktop 9 for x86_64
Novell Linux Desktop 9 SDK for x86
Novell Linux Desktop 9 SDK for x86_64
Open Enterprise Server
openSUSE 10.3
openSUSE 11.0
SLES SDK 9 for IBM iSeries and IBM pSeries
SLES SDK 9 for IBM S/390 and IBM zSeries
SLES SDK 9 for x86
SLES SDK 9 for X86-64
SUSE Linux Enterprise SDK 10 SP2
Product(s):
Definition Synopsis
  • sles10-sp2-sdk is installed
  • AND Package Information
  • bytefx-data-mysql less than 1.2.2-12.22
  • OR ibm-data-db2 less than 1.2.2-12.22
  • OR mono-basic less than 1.2.2-13.15
  • OR mono-core-32bit less than 1.2.2-12.22
  • OR mono-core-x86 less than 1.2.2-12.22
  • OR mono-core less than 1.2.2-12.22
  • OR mono-data-firebird less than 1.2.2-12.22
  • OR mono-data-oracle less than 1.2.2-12.22
  • OR mono-data-postgresql less than 1.2.2-12.22
  • OR mono-data-sqlite less than 1.2.2-12.22
  • OR mono-data-sybase less than 1.2.2-12.22
  • OR mono-data less than 1.2.2-12.22
  • OR mono-devel less than 1.2.2-12.22
  • OR mono-extras less than 1.2.2-12.22
  • OR mono-jscript less than 1.2.2-12.22
  • OR mono-locale-extras less than 1.2.2-12.22
  • OR mono-nunit less than 1.2.2-12.22
  • OR mono-web less than 1.2.2-12.22
  • OR mono-winforms less than 1.2.2-12.22
    • BACK