SecuritySpace - CVE-2015-2872

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2015-2872

Description: Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x before 3.7.1248, 3.8.x before 3.8.1263, and other versions allow remote attackers to inject arbitrary web script or HTML via (1) crafted input to index.php that is processed by certain Internet Explorer 7 configurations or (2) crafted input to the widget feature.

Test IDs: None available

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2015-2872
BugTraq ID: 76397
http://www.securityfocus.com/bid/76397
CERT/CC vulnerability note: VU#248692
http://www.kb.cert.org/vuls/id/248692

CVE ID:	CVE-2015-2872
Description:	Multiple cross-site scripting (XSS) vulnerabilities in Trend Micro Deep Discovery Inspector (DDI) on Deep Discovery Threat appliances with software before 3.5.1477, 3.6.x before 3.6.1217, 3.7.x before 3.7.1248, 3.8.x before 3.8.1263, and other versions allow remote attackers to inject arbitrary web script or HTML via (1) crafted input to index.php that is processed by certain Internet Explorer 7 configurations or (2) crafted input to the widget feature.
Test IDs:	None available
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2015-2872 BugTraq ID: 76397 http://www.securityfocus.com/bid/76397 CERT/CC vulnerability note: VU#248692 http://www.kb.cert.org/vuls/id/248692