Sunday, June 27, 2010

Symantec website XSS vulnerability


Cross-site scripting,Html injection and redirect Again!.Vulnerabilities affecting sites like symantec.com, service1.symantec.com and seer.entsupport.symantec.com



http://service1.symantec.com/SUPPORT/INTER/sharedtechintl.nsf/0/47dd815a2dc65e058025709d004ce998?OpenDocument&seg=XSS POC

http://www.symantec.com/connect/symantec-blogs/security-response?page=100&lang=XSS Redirect POC

http://seer.entsupport.symantec.com/email_forms/TechNoteFeedback/SendFeedback.asp?ddProduct=ent-security.nsf&strDocID=2002103012571948&type=9&helpState=1&strBODY=XSS POC

All POC still works,so be carefull.
Mirror and info from Softpedia

No comments: