Summary
This host is installed with Flock browser and is prone to cross site scripting vulnerability.
Impact
Successful exploitation will allow attackers to execute HTML code in the context of the affected browser, potentially allowing the attacker to steal cookie-based authentication credentials.
Impact Level: Application
Solution
Upgrade to the Flock version 3.0.0.4094
For updates refer to http://www.flock.com/
Insight
The flaw is due to malformed favourite imported from an HTML file, imported from another browser, or manually created can bypass cross-origin protection, which has unspecified impact and attack vectors.
Affected
Flock versions 3.0 to 3.0.0.4093
References
Updated on 2017-03-28
Severity
Classification
-
CVE CVE-2010-3202 -
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Adobe Flash Player/Air Multiple Vulnerabilities -feb10 (Linux)
- Apple Safari 'background' Remote Denial Of Service Vulnerability
- Adobe Digital Edition Information Disclosure Vulnerability (Windows)
- Apple Safari Secure Cookie Security Bypass Vulnerability (Windows)
- Apache Tomcat Multiple Vulnerabilities - 03 Mar14