Cross-site request forgery (CSRF) vulnerability in Microdasys before 3.5.1-B708, as used in Bloxx Web Filtering before 5.0.14 and other products, allows remote attackers to hijack the authentication of arbitrary users for requests that trigger error pages containing XSS sequences, a different vulnerability than CVE-2012-2564.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2012-06-09T00:00:00Z
Updated: 2024-09-17T01:41:57.248Z
Reserved: 2012-06-08T00:00:00Z
Link: CVE-2012-3343
Vulnrichment
No data.
NVD
Status : Modified
Published: 2012-06-09T00:55:01.503
Modified: 2024-11-21T01:40:40.647
Link: CVE-2012-3343
Redhat
No data.