Adobe RoboHelp Server SQL Injection Vulnerability
Publish Date: 31 mai 2016
Gravité: : Medium
Identifiant(s) CVE: : CVE-2008-2991
Date du conseil: 31 mai 2016
Description
Cross-site scripting (XSS) vulnerability in Adobe RoboHelp Server 6 and 7 allows remote attackers to inject arbitrary web script or HTML via vectors related to the Help Errors log.
Information Exposure Rating:
Apply associated Trend Micro DPI Rules.
Solutions
Trend Micro Deep Security DPI Rule Number: 1002628
Trend Micro Deep Security DPI Rule Name: 1002628 - Adobe RoboHelp Server SQL Injection Vulnerability
Affected software and version:
- Adobe robohelp_server 6
- Adobe robohelp_server 7