Cross-site scripting (XSS) vulnerability in the Hitachi JP1/HiCommand Device Manager, Tiered Storage Manager, Replication Monitor, and GlobalLink Availability Manager prior to 20070528 allows remote malicious users to inject arbitrary web script or HTML via the Expect HTTP header.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
hitachi jp1-hicommand device manager 02_30 |
||
hitachi jp1-hicommand device manager 05_00 |
||
hitachi jp1-hicommand replication monitor 04_00 |
||
hitachi jp1-hicommand replication monitor 05_00 |
||
hitachi jp1-hicommand tiered storage manager 05_00 |
||
hitachi jp1-hicommand tiered storage manager 05_50 |
||
hitachi jp1-hicommand global link availability manager 05_00 |
||
hitachi jp1-hicommand tiered storage manager 04_30 |
||
hitachi jp1-hicommand device manager 05_10 |
||
hitachi jp1-hicommand device manager 05_50 |
||
hitachi jp1-hicommand replication monitor 05_50 |
||
hitachi jp1-hicommand tiered storage manager 04_00 |