CVE-2011-2770: XSS
First published: Thu Nov 17 2011(Updated: )
Cross-site scripting (XSS) vulnerability in man2html.cgi.c in man2html 1.6, and possibly other version, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to error messages.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Man2html | =1.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2011-2770?
CVE-2011-2770 is considered to have a high severity due to its impact on web application security and potential for exploitation.
How do I fix CVE-2011-2770?
To fix CVE-2011-2770, upgrade to a newer version of man2html that addresses the cross-site scripting vulnerability.
What are the potential impacts of CVE-2011-2770?
The potential impacts of CVE-2011-2770 include the injection of arbitrary web scripts, which can lead to unauthorized access and data theft.
Which versions of man2html are affected by CVE-2011-2770?
CVE-2011-2770 specifically affects man2html version 1.6 and potentially other unspecified versions.
Who can exploit CVE-2011-2770?
CVE-2011-2770 can be exploited by remote attackers who can manipulate error message outputs to inject malicious scripts.
- agent/references
- agent/type
- agent/softwarecombine
- agent/author
- agent/weakness
- agent/severity
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-historical
- agent/software-canonical-lookup-request
- collector/nvd-index
- vendor/robert luberda
- canonical/man2html
- version/man2html/1.6