CVE-2007-6477

Name of the Vulnerable Software and Affected Versions Citrix Web Interface versions 2.0 and earlier NFuse (affected versions not specified)

Description A cross-site scripting (XSS) issue exists in the on-line help feature, allowing remote attackers to inject arbitrary web script or HTML. This can be achieved via unspecified vectors.

Recommendations For Citrix Web Interface versions 2.0 and earlier, update to a version later than 2.0 to resolve the issue. For NFuse, at the moment, there is no information about a newer version that contains a fix for this vulnerability.