Cross-Site Scripting Vulnerability in Brother MFC-J4410DW Printer
CVE-2015-1056

Currently unrated

Key Information:

Vendor: Brother
Status: Mfc-j4410dw Firmware; Mfc-j4410dw
Vendor: CVE Published:; 16 January 2015

What is CVE-2015-1056?

A Cross-Site Scripting vulnerability has been identified in the Brother MFC-J4410DW printer. This flaw allows remote attackers to inject arbitrary web scripts or HTML through the 'url' parameter to the general/status.html page and potentially other pages. Exploitation of this vulnerability may lead to unauthorized actions being performed by users who access the compromised pages.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/99906

vdb-entryx_refsource_XF

http://packetstormsecurity.com/files/129841/Brother-MFC-J...

x_refsource_MISC

http://www.securityfocus.com/archive/1/534398/100/0/threaded

mailing-listx_refsource_BUGTRAQ

Timeline

Vulnerability published
Jan 16, 2015
Vulnerability Reserved
Jan 16, 2015

JSON