PT-2012-3555 · Koyo · Koyo H0-Ecom100+5

Published

2012-04-13

Updated

2012-04-16

CVE-2012-1807

CVSS v2.0

4.3

Medium

Vector

AV:N/AC:M/Au:N/C:N/I:P/A:N

Name of the Vulnerable Software and Affected Versions Koyo H0-ECOM, H0-ECOM100, H2-ECOM, H2-ECOM-F, H2-ECOM100, H4-ECOM, H4-ECOM-F, and H4-ECOM100 (affected versions not specified)

Description The issue is related to a cross-site scripting (XSS) vulnerability in the web server of the ECOM Ethernet module. This allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

XSS

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-79

Related Identifiers

CVE-2012-1807

Affected Products

Koyo H0-Ecom

Koyo H0-Ecom100

Koyo H2-Ecom

Koyo H2-Ecom100

Koyo H4-Ecom

Koyo H4-Ecom100

PT-2012-3555 · Koyo · Koyo H0-Ecom100+5

CVE-2012-1807

Weakness Enumeration

Related Identifiers

Affected Products

References · 2