LiveZilla.LiveZillaServer.CreateTicket.XSS
Description
This indicates an attack attempt to exploit a Cross-Site Scripting vulnerability in LiveZilla Server.
The vulnerability is due to an error when the vulnerable software handles a maliciously crafted request. A remote attacker may be able to exploit this to run JavaScript code on vulnerable server.
Affected Products
LiveZilla Server 8.0.1.0 and below
Impact
System Compromise: Remote attackers can gain control of vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://www.livezilla.net/downloads/en/
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |
Version Updates
Date | Version | Detail |
---|---|---|
2019-07-18 | 14.653 | Sig Added |
2019-07-18 | 14.652 | Sig Added |
2019-07-18 | 14.651 | Sig Added |
2019-07-16 | 14.649 | Default_action:pass:drop |
2019-07-05 | 14.644 |