VULHUB ™

It has been reported that NetScreen SA 5000 Series may be prone to a cross-site scripting vulnerability that may allow an attacker to execute arbitrary HTML or script code in the browser of a vulnerable user. The issue presents itself due to insufficient sanitization of user-supplied data via the 'row' parameter of the 'delhomepage.cgi' CGI binary. The vulnerability has been discovered in an appliance called A5030-Clustered pair running IVE firmware version 3.3 Patch 1 build 4797.

It has been reported that NetScreen SA 5000 Series may be prone to a cross-site scripting vulnerability that may allow an attacker to execute arbitrary HTML or script code in the browser of a vulnerable user. The issue presents itself due to insufficient sanitization of user-supplied data via the 'row' parameter of the 'delhomepage.cgi' CGI binary. The vulnerability has been discovered in an appliance called A5030-Clustered pair running IVE firmware version 3.3 Patch 1 build 4797.