CVSS Base Vector:
The host is installed with
Open-Xchange (OX) AppSuite and is prone to multiple xss vulnerabilities.
Checks if a vulnerable version is present on the target host.
Multiple flaws exist due to an improper
sanitization of user-supplied input.
Successful exploitation will allow attackers
to execute arbitrary script code in the browser of an unsuspecting user in the
context of the affected application. This may let the attacker steal cookie-based
authentication credentials and launch other attacks.
Open-Xchange (OX) AppSuite versions
7.6.2-rev0 - 7.6.2-rev57,
7.6.3-rev0 - 7.6.3-rev13,
7.8.0-rev0 - 7.8.0-rev35,
7.8.1-rev0 - 7.8.1-rev17,
7.8.2-rev0 - 7.8.2-rev4
Upgrade to Open-Xchange (OX) AppSuite
version 7.6.2-rev58, 7.6.3-rev14, 7.8.0-rev36, 7.8.1-rev18, 7.8.2-rev5 or later.
NIST (National Institute of Standards and Technology) NVD (National Vulnerability Database)
SecurityFocus Bugtraq ID: