Sponsored Content
Special Forums Cybersecurity Security Advisories (RSS) S-194: Citrix MetaFrame Web Manager 'login.asp' Vulnerability Post 302170494 by Linux Bot on Monday 25th of February 2008 06:10:14 PM
Old 02-25-2008
S-194: Citrix MetaFrame Web Manager 'login.asp' Vulnerability

Citrix MetaFrame Web Manager is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. The risk is MEDIUM. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecting user in the context of the affected site. This may allow the attacker to steal cookie-based authentication credentials and to launch other attacks.


More...
 

3 More Discussions You Might Find Interesting

1. Solaris

How to install citrix metaframe server in Solairs 9 and 10,

How to install citrix metaframe server in Solairs 9 and 10, Plese help me if anybody having instllation procedure. your help greatly appreciated. Thanks & Regards Durgaprasad (0 Replies)
Discussion started by: durgaprasadr13
0 Replies

2. Cybersecurity

APACHE: Tie in Web Page login with server login

Hello, I have created a web page on a server using apache and added .htaccess and .htpasswd in the folder for authentification. I was wondering if there was anyway to tie-in the login for this page with the login used to logon to the server. i.e. the same login info. is used for both, when... (1 Reply)
Discussion started by: WhotheWhat
1 Replies

3. Web Development

ASP.NET 5 Application on Centos OS7 Web Hosting Server

Hi All, Frankly I'm new to Linux Environment. While we are trying to Host an ASP.NET 5 Web Application on Centos OS7 Web hosting Server. There were couple of steps which we are supposed to go through, please see this link - We are stuck at Create a Container & then Running the Container,... (1 Reply)
Discussion started by: John Fredric
1 Replies
ugweb(1M)																 ugweb(1M)

NAME
ugweb - starts the HP-UX User and Group Account Configuration tool SYNOPSIS
[ ] [ ] DESCRIPTION
The HP-UX User and Group Account Configuration tool ( ) is used to manage user accounts and group accounts on the local system. This tool can also be used to manage user accounts on a NIS system. The HP-UX User and Group Account Configuration tool provides both Web-based and terminal user interface. The Web-based interface is launched through the HP System Management Homepage. Superuser privileges are required to access the HP-UX User and Group Account Configuration tool. A user who does not have superuser privi- leges has read-only access to the Local Users, NIS Users and Groups areas in the HP-UX User and Group Account Configuration tool and cannot modify local user accounts, group accounts and NIS User accounts. An attempt will be made to connect to a Mozilla/Netscape Web browser running on the X server defined by the DISPLAY environment variable. If a running Mozilla/Netscape client is found, it will be used, otherwise a new Mozilla/Netscape session will be initiated. This will only happen if the Mozilla/Netscape process is running in the same system as that referenced by the DISPLAY variable, unless the -F option is used. Note: By default, the HP-UX User and Group Account Configuration tool (ugweb) invokes the Mozilla Web browser. If you want to support any other browser (Netscape), set the $BROWSER environment variable as shown below: The terminal user interface is invoked if any of the following conditions are true: o The command is invoked with the option. o The environment variable is not set. The Web-based interface is launched if all the following conditions are true: o The command is invoked with option. o The environment variable is set. o The command is available on the system. If the Web-based interface cannot be launched, invokes the terminal user interface. Options recognizes the following options: Forces a client browser to be used in less secure ways. The option forces the client browser to be used or started, even when the X-traffic between the X-server and the Mozilla browser is not secure. Use this option only when you are sure the network traffic between the host where Mozilla is running and the host in the DISPLAY variable is secure. If cannot start the Web browser, the terminal interface is started. When the HP-UX User and Group Account Configuration Web interface is invoked by SMH, the option is used. If a privileged user (root) executes the command with the option, a temporary login bypass key is generated. The bypass key enables the user to access the Web interface without having to provide login information again. When the HP-UX User and Group Account Configuration interface is started by SMH, the option is used. Launches the terminal interface for managing local users, NIS users and groups regardless of the current setting of the environment variable. You can also start the HP-UX User and Group Account Configuration tool using one of the following methods: o Run and select the Accounts for Users and Groups to launch the tool in Terminal User Interface mode o Start the HP-UX User and Group Account Configuration tool Web interface by typing the URL in the address bar of your browser, where hostname is the name of the server o Launch the HP-UX Systems Insight Manager on the server and select the User and Group Account Configuration tool from the Config- ure -> HP-UX Configuration menu Online Help After the HP-UX User and Group Account Configuration tool is started, the online help provides details on how to use the tool. RETURN VALUES
Upon completion, ugweb returns one of the following values: o 0 Successful o 1 An error occurred AUTHOR
was developed by Hewlett-Packard. ugweb(1M)
All times are GMT -4. The time now is 08:26 AM.
Unix & Linux Forums Content Copyright 1993-2022. All Rights Reserved.
Privacy Policy