Executive Summary

Informations
Name CVE-2011-1863 First vendor Publication 2011-06-14
Vendor Cve Last vendor Modification 2011-09-21

Security-Database Scoring CVSS v2

Cvss vector : (AV:N/AC:M/Au:S/C:C/I:P/A:P)
Cvss Base Score 7.5 Attack Range Network
Cvss Impact Score 8.5 Attack Complexity Medium
Cvss Expoit Score 6.8 Authentication Requires single instance
Calculate full CVSS 2.0 Vectors scores

Detail

HP Service Manager 7.02, 7.11, 9.20, and 9.21 and Service Center 6.2.8 allow remote authenticated users to conduct unspecified script injection attacks via unknown vectors.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-1863

CWE : Common Weakness Enumeration

idName
CWE-94Failure to Control Generation of Code ('Code Injection')

CPE : Common Platform Enumeration

TypeDescriptionCount
Application1
Application4

Open Source Vulnerability Database (OSVDB)

idDescription
73108HP Service Manager / Service Center Unspecified Authenticated XSS

Internal Sources (Detail)

SourceUrl
BID http://www.securityfocus.com/bid/48168
HP http://marc.info/?l=bugtraq&m=130755929821099&w=2
http://marc.info/?l=bugtraq&m=130755929821099&w=2
SECTRACK http://www.securitytracker.com/id?1025611
SECUNIA http://secunia.com/advisories/44836
SREASON http://securityreason.com/securityalert/8273
XF http://xforce.iss.net/xforce/xfdb/67914

Alert History

If you want to see full details history, please login or register.
0
DateInformations
2013-05-10 23:00:13
  • Multiple Updates