Denial of Service Vulnerability in Parallels Plesk Small Business Panel
CVE-2011-4755

Currently unrated

Key Information:

Vendor: Parallels
Status: Parallels Plesk Small Business Panel
Vendor: CVE Published:; 16 December 2011

What is CVE-2011-4755?

The Parallels Plesk Small Business Panel 10.2.0 contains a vulnerability related to improper validation of string data designated for XML document storage. This flaw can be exploited by remote attackers using specially crafted cookies, potentially leading to a denial of service due to parsing errors. The affected components allow for manipulation by targeting files such as client@1/domain@1/hosting/file-manager/, creating a risk of service disruption or other unspecified consequences.

References

http://xss.cx/examples/plesk-reports/plesk-10.2.0.html

x_refsource_MISC

https://exchange.xforce.ibmcloud.com/vulnerabilities/72207

vdb-entryx_refsource_XF

Timeline

Vulnerability published
Dec 16, 2011
Vulnerability Reserved
Dec 11, 2011