CVE-2008-1208

Currently unrated

Key Information:

Vendor: Checkpoint
Status: Vpn-1 Utm Edge W Embedded Ngx
Vendor: CVE Published:; 8 March 2008

Summary

Cross-site scripting (XSS) vulnerability in the login page in Check Point VPN-1 UTM Edge W Embedded NGX 7.0.48x allows remote attackers to inject arbitrary web script or HTML via the user parameter.

References

https://supportcenter.checkpoint.com/supportcenter/portal...

x_refsource_CONFIRM

http://www.louhi.fi/advisory/checkpoint_080306.txt

x_refsource_MISC

http://www.vupen.com/english/advisories/2008/0788

vdb-entryx_refsource_VUPEN

Timeline

Vulnerability published
Mar 8, 2008
Vulnerability Reserved
Mar 7, 2008