Vulnerability Details CVE-2010-1193
Cross-site scripting (XSS) vulnerability in WebAccess in VMware Server 2.0 allows remote attackers to inject arbitrary web script or HTML via vectors related to JSON error messages.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.004
EPSS Ranking 57.8%
CVSS Severity
CVSS v2 Score 4.3
References
- http://lists.vmware.com/pipermail/security-announce/2010/000086.html
- http://www.securityfocus.com/bid/39037
- http://www.securitytracker.com/id?1023769
- http://www.vmware.com/security/advisories/VMSA-2010-0005.html
- http://lists.vmware.com/pipermail/security-announce/2010/000086.html
- http://www.securityfocus.com/bid/39037
- http://www.securitytracker.com/id?1023769
- http://www.vmware.com/security/advisories/VMSA-2010-0005.html