Doz has reported a vulnerability in Xerox DocuShare, which can be exploited by malicious people to conduct cross-site scripting attacks.
Be sure to check if your system is missing security updates or have insecure applications installed:
http://secunia.com/software_inspector/
Feature Overview - The Secunia Software Inspector:
* Detects insecure versions of applications installed
* Verifies that all Microsoft patches are applied
* Assists you in updating your system and applications
* Runs through your browser. No installation or download is required.
Category: vulnerabilities
|
Posted by
Staff
658 days ago
Via: http://secunia.com |
1 Comment
Staff
658 days ago
Via: http://secunia.com |
1 Comment
Add this link to...
Bury
Best of Security is a consolidated resource for all kinds of security news and stories. Learn more...
Please update the link. I need mod dosevasive...I also need an updated link please...I also need an updated link if possible....Advisory of Workaround (by Xerox):
Xerox has released a...I recommend you update this post. Scott Charbo IS NOT and NEVER WAS under...Patched since v2.04
Hello - I am Jeff Hardy from SmarterTools.
The vulnerability...give me a new link for downloding this lib / .dll, please....
Xerox has released a...I recommend you update this post. Scott Charbo IS NOT and NEVER WAS under...Patched since v2.04
The vulnerability...give me a new link for downloding this lib / .dll, please....
Comments
Advisory of Workaround (by Xerox):
Xerox has released a minimal-impact workaround for this issue for DocuShare 4.x, 5.x, and 6.x.
The workaround is detailed at
https://docushare.xerox.com/doug/dsweb/View/Collection-7503
We will also be releasing a patch to restore full functionality. Please refer to the above collection, or use your DocuShare support contact, for further information.
Thank you to Doz and HackersCenter for finding and reporting this issue.
Leigh L. Klotz, Jr.
Xerox Corporation