icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Keene Digital Media Server Multiple XSS

Medium

Synopsis

The remote host is vulnerable to a Cross-Site Scripting (XSS) attack.

Description

The remote host is running Keene Digital Media Server, a web application for Microsoft Windows designed to share media files on the Internet. This version of the software has been reported to be prone to a cross-site scripting issue. An attacker may steal cookie-based authentication credentials from a legitimate user by sending malformed links to this site.

Solution

Upgrade or patch according to vendor recommendations.