HomePentest-Tools.com Logo

Flock Browser Malformed Bookmark Cross site scripting Vulnerability CVE-2010-3202

Severity
Not available
CVSSv3 Score
Not available
Vulnerability description

Flock browser is prone to a cross-site scripting (XSS) vulnerability.

Risk description

The flaw is due to malformed favourite imported from an HTML file, imported from another browser, or manually created can bypass cross-origin protection, which has unspecified impact and attack vectors. Successful exploitation will allow attackers to execute HTML code in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials.

Recommendation

Upgrade to the Flock version 3.0.0.4094

Codename
Not available
Detectable with
Network Scanner
Scan engine
OpenVAS
Exploitable with Sniper
No
CVE Published
Sep 13, 2010
Detection added at
Software Type
Not available
Vendor
Not available
Product
Not available