CVE-2010-4324

Currently unrated

Key Information:

Vendor: Novell
Status: Identity Manager Roles Based Provisioning Module; Identity Manager
Vendor: CVE Published:; 7 January 2011

Summary

Cross-site scripting (XSS) vulnerability in the Approval Form in the User Application in the Roles Based Provisioning Module 3.7.0 before 370D in Novell Identity Manager (aka IDM) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://osvdb.org/70298

vdb-entryx_refsource_OSVDB

http://www.vupen.com/english/advisories/2011/0038

vdb-entryx_refsource_VUPEN

http://www.securityfocus.com/bid/45692

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Jan 7, 2011
Vulnerability Reserved
Nov 29, 2010

Collectors

NVD DatabaseMitre Database