Vulnonym.org

CVE-2008-2825 - Arow Investigation

Description

Cross-site scripting (XSS) vulnerability in the embedded Web Server in Xerox WorkCentre M123 M128 and 133 and WorkCentre Pro 123 128 and 133 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Reference

http://www.xerox.com/downloads/usa/en/c/cert_XRX08_005.pdf http://www.securityfocus.com/bid/29689 http://www.securitytracker.com/id?1020280 http://secunia.com/advisories/30669 http://www.vupen.com/english/advisories/2008/1830/references https://exchange.xforce.ibmcloud.com/vulnerabilities/43061