Novell.GroupWise.WebAccess.XSS
Description
This indicates an attack attempt against a Cross Site Scripting vulnerability in Novell GroupWise WebAccess.
The vulnerability is due to insufficient validation of user supplied data in the application. A remote attacker can exploit this to execute arbitrary script code within context of the user browser.
Affected Products
Novell Groupwise WebAccess 2012 SP3 HP1 and prior
Novell Groupwise WebAccess 2014 SP1 HP1 and prior
Impact
System Compromise: Remote attackers can execute arbitrary script code within the context of the target user's browser
Recommended Actions
Apply the most recent upgrade or patch from the vendor
http://www.novell.com/support/kb/doc.php?id=7016653
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |