ID de Prueba:	1.3.6.1.4.1.25623.1.0.12301
Categoría:	Web application abuses
Título:	Citrix Web Interface XSS
Resumen:	The remote server is running a Citrix Web Interface server that is vulnerable to cross site scripting.
Descripción:	Summary: The remote server is running a Citrix Web Interface server that is vulnerable to cross site scripting. Vulnerability Impact: When a user fails to authenticate, the Citrix Web Interface includes the error message text in the URL. The error message can be tampered with to perform an XSS attack. Solution: Upgrade to Citrix Web Interface 2.1 or newer. CVSS Score: 4.3 CVSS Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N
Referencia Cruzada:	Common Vulnerability Exposure (CVE) ID: CVE-2003-1157 BugTraq ID: 27948 http://www.securityfocus.com/bid/27948 BugTraq ID: 8939 http://www.securityfocus.com/bid/8939 Bugtraq: 20031031 IRM 008: Citrix Metaframe XP is vulnerable to Cross Site Scripting (Google Search) http://www.securityfocus.com/archive/1/343040 http://www.osvdb.org/2762 http://secunia.com/advisories/10127 XForce ISS Database: citrix-webmanager-login-xss(40782) https://exchange.xforce.ibmcloud.com/vulnerabilities/40782 XForce ISS Database: metaframe-error-message-xss(13569) https://exchange.xforce.ibmcloud.com/vulnerabilities/13569
Copyright	Copyright (C) 2003 Michael J. Richardson

Esta es sólo una de 146377 pruebas de vulnerabilidad en nuestra serie de pruebas. Encuentre más sobre cómo ejecutar una auditoría de seguridad completa. Para ejecutar una prueba gratuita de esta vulnerabilidad contra su sistema, regístrese ahora.