CVE-2012-0414: XSS
First published: Mon Dec 02 2013(Updated: )
Cross-site scripting (XSS) vulnerability in the Spacewalk service in SUSE Manager 1.2 for SUSE Linux Enterprise (SLE) 11 SP1 allows remote attackers to inject arbitrary web script or HTML via an image name.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| SUSE Manager | =1.2 | |
| SUSE Linux | =11-sp1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2012-0414?
CVE-2012-0414 is classified as a moderate severity cross-site scripting (XSS) vulnerability.
How do I fix CVE-2012-0414?
To fix CVE-2012-0414, users should apply the latest security patches provided for SUSE Manager 1.2.
Who is affected by CVE-2012-0414?
CVE-2012-0414 affects users of SUSE Manager 1.2 for SUSE Linux Enterprise 11 SP1.
What type of vulnerability is CVE-2012-0414?
CVE-2012-0414 is a cross-site scripting (XSS) vulnerability that allows remote code injection via image names.
Can CVE-2012-0414 be exploited remotely?
Yes, CVE-2012-0414 can be exploited remotely by attackers to inject arbitrary web scripts or HTML.
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/severity
- agent/author
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/novell
- canonical/suse manager
- version/suse manager/1.2
- canonical/suse linux
- version/suse linux/11-sp1