CVE-2011-3423

Currently unrated

Key Information:

Vendor: Tibco
Status: Managed File Transfer Command Center; Managed File Transfer Internet Server; Slingshot
Vendor: CVE Published:; 19 September 2011

Summary

Cross-site scripting (XSS) vulnerability in the Managed File Transfer server in TIBCO Managed File Transfer Internet Server before 7.1.1 and Managed File Transfer Command Center before 7.1.1, and the server in TIBCO Slingshot before 1.8.1, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

References

http://secunia.com/advisories/45976

third-party-advisoryx_refsource_SECUNIA

http://www.tibco.com/services/support/advisories/mft-slin...

x_refsource_CONFIRM

http://www.tibco.com/multimedia/mft-slingshot_advisory_20...

x_refsource_CONFIRM

Timeline

Vulnerability published
Sep 19, 2011
Vulnerability Reserved
Sep 12, 2011