OmniWeb.JavaScript.Alert.Format.String

description-logoDescription

A format string vulnerability in OmniGroup OmniWeb 5.5.1 allows remote attackers to cause a denial of service (application crash) or execute arbitrary code via format string specifiers in the Javascript alert function.

affected-products-logoAffected Products

Omni Group OmniWeb 5.5.1
Omni Group OmniWeb 5.1
Omni Group OmniWeb 5.0.1

Impact logoImpact

System compromise.

recomended-action-logoRecommended Actions

Upgrade to Omni Group OmniWeb 5.5.2

Telemetry logoTelemetry

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2020-12-11 16.978