فا

‫ Red Hat update for Fuse ESB Enterprise and Fuse MQ Enterprise

IRCAD2013123063
ID: IRCAD2013123063
Release Date: 2013-12-20
Criticality level: Highly critical
Software:
Fuse ESB Enterprise 7.x
Fuse MQ Enterprise 7.x
Description:
Red Hat has issued an update for Fuse ESB Enterprise and Fuse MQ Enterprise. This fixes some vulnerabilities, where one has an unknown impact and others can be exploited by malicious users to conduct script insertion attacks and by malicious people to compromise a vulnerable system.
1) Certain input related to the management console is not properly sanitised before being used. This can be exploited to insert arbitrary HTML and script code, which will be executed in a user's browser session in context of an affected site if malicious data is viewed.
Solution
Apply security patch.
References:
RHSA-2013:1862-1:
Secunia:

نظرات

بدون نظر
شما برای نظر دادن باید وارد شوید

نوشته

 
تاریخ ایجاد: 3 دی 1392

امتیاز

امتیاز شما
تعداد امتیازها: 0