NVD

Id
82855  
Name
CVE-2016-9316  
Description
Multiple stored Cross-Site-Scripting (XSS) vulnerabilities in com.trend.iwss.gui.servlet.updateaccountadministration in Trend Micro InterScan Web Security Virtual Appliance (IWSVA) version 6.5-SP2_Build_Linux_1707 and earlier allow authenticated, remote users with least privileges to inject arbitrary HTML/JavaScript code into web pages. This was resolved in Version 6.5 CP 1737.  
Reject
 
CVSS Version
2  
CVSS Score
3.5  
Severity
Low  
CVSS Base Score
3.5  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:N/I:P/A:N)  
Pub Date
2017-02-28  
Published
2017-02-21  
Modified Date
2017-02-23  
Seq
2016-9316  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
407775 82855 CVE-2016-8680 [oss-security] 20161015 Re: libdwarf: heap-based buffer overflow in _dwarf_get_abbrev_for_code (dwarf_util.c)  View
407776 82855 CVE-2016-8680 93595  View
407777 82855 CVE-2016-8680 https://blogs.gentoo.org/ago/2016/10/04/libdwarf-heap-based-buffer-overflow-in-_dwarf_get_abbrev_for_code-dwarf_util-c/  View
407778 82855 CVE-2016-8680 https://bugzilla.redhat.com/show_bug.cgi?id=1385686  View
407779 82855 CVE-2016-8680 https://sourceforge.net/p/libdwarf/code/ci/268c1f18d1d28612af3b72d7c670076b1b88e51c/tree/libdwarf/dwarf_util.c?diff=0b28b923c3bd9827d1d904feed2abadde4fa5de2  View

Related JVN