Juniper Networks
Solutions
Products & Services
Company
Partners
Support
Education

Signature Detail

Security Intelligence Center
Signatures
Print

Short Name

 HTTP:XSS:HTML-SCRIPT-IN-HOST

Severity

 High

Recommended

 Yes

Recommended Action

 Drop

Category

 HTTP

Keywords

 HTML Script Tag Embedded in Header Host

Release Date

 2013/03/20

Update Number

 2247

Supported Platforms

 di-5.3+, idp-4.0+, isg-3.0+, j-series-9.5+, mx-9.4+, srx-9.2+, srx-branch-9.4+, vsrx-12.1+

HTTP: HTML Script Tag Embedded in Header Host


This signature detects cross site scripting attacks. Attackers can create a malicious Web site that includes HTML embedded in the hyperlinks, which might violate site security settings. Attackers can then view the Web cookies from a target computer. Web cookies typically contain sensitive information such as usernames, passwords, credit card numbers, social security numbers, and bank account numbers.

References

  • BugTraq: 32476
  • CVE: CVE-2008-5278

Site Map
RSS Feeds
Careers
Accessibility
Feedback
Privacy Policy
Legal Notices
Copyright © 1999-2010 Juniper Networks, Inc. All rights reserved.
Help
|
My Account
|
Log Out