CVE-2008-3253

Currently unrated

Key Information:

Vendor: Citrix
Status: Xenserver
Vendor: CVE Published:; 22 July 2008

Summary

Cross-site scripting (XSS) vulnerability in the XenAPI HTTP interfaces in Citrix XenServer Express, Standard, and Enterprise Edition 4.1.0; Citrix XenServer Dell Edition (Express and Enterprise) 4.1.0; and HP integrated Citrix XenServer (Select and Enterprise) 4.1.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/43857

vdb-entryx_refsource_XF

http://support.citrix.com/article/CTX117814

x_refsource_CONFIRM

http://www.securitytracker.com/id?1020515

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
Jul 22, 2008
Vulnerability Reserved
Jul 22, 2008

Collectors

NVD DatabaseMitre Database