PT-2007-2158 · Fenrir · Portable Sleipnir+1

Published

2007-02-04

Updated

2011-03-08

CVE-2007-0705

CVSS v2.0

7.5

High

Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Name of the Vulnerable Software and Affected Versions Sleipnir versions 2.49 and earlier Portable Sleipnir versions 2.45 and earlier

Description A cross-zone scripting issue allows remote attackers to bypass Web content zone restrictions via certain scripts contained in RSS data.

Recommendations For Sleipnir versions 2.49 and earlier, consider disabling the processing of scripts in RSS data until a patch is available. For Portable Sleipnir versions 2.45 and earlier, restrict the execution of scripts from untrusted sources to minimize the risk of exploitation.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2007-0705

Affected Products

Portable Sleipnir

Sleipnir

PT-2007-2158 · Fenrir · Portable Sleipnir+1

CVE-2007-0705

Related Identifiers

Affected Products

References · 7