竹意

咬定青山不放松,立根原在破岩中。千磨万击还坚劲,任尔东西南北风

私信
归档
© 竹意 | Powered by LOFTER

行者路上有風有雨有彩虹:

日常生活點滴的記錄:

CVE-2014-7294 NYU OpenSSO Integration Open Redirect Security Vulnerability


Exploit Title: NYU OpenSSO Integration Logon Page url Parameter Open Redirect

Product: OpenSSO Integration

Vendor: NYU

Vulnerable Versions: 2.1 and probability prior

Tested Version: 2.1

Advisory Publication: DEC 29, 2014

Latest Update: DEC 29, 2014

Vulnerability Type: Open Redirect [CWE-601]

CVE Reference: CVE-2014-7294

CVSS v2 Base Score: 5.8 (MEDIUM) (AV:N/AC:M/Au:N/C:P/I:P/A:N) (legend)

Impact Subscore: 4.9

Exploitability Subscore: 8.6

Credit: Wang Jing [CCRG, Nanyang Technological University (NTU), Singapore]


http://blog.163.com/greensun_2006/blog/static/1112211220151108811617/

 
转载自:行者路上有風有雨有彩虹 来源:點滴的記錄
2015-02-11 23
 
 
评论
热度(23)
 
回到顶部