Dell OpenManage Server Administrator version 18.104.22.168 and earlier contains a DOM-based cross-site scripting vulnerability.
CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Dell OpenManage Server Administrator version 7.1.01 and earlier contains a DOM-based cross-site scripting vulnerability.
A remote attacker may be able to execute arbitrary script in the context of the end-user's browser session.
Apply an update
The vulnerability reporter has confirmed that Dell OpenManage Server Administrator 22.214.171.124, 126.96.36.199 and 188.8.131.52 are affected by this vulnerability.
Dell Computer Corporation, Inc.
Thanks to Tenable Network Security for reporting this vulnerability.
This document was written by Michael Orlando.
|Date First Published:||2013-01-09|
|Date Last Updated:||2015-09-17 19:55 UTC|