Wireless Access

last person joined: 16 hours ago 

Access network design for branch, remote, outdoor, and campus locations with HPE Aruba Networking access points and mobility controllers.
Back to discussions
Expand all | Collapse all

Reflected XSS

This thread has been viewed 0 times

  • 1.  Reflected XSS

    Posted Jul 15, 2015 04:52 AM
      |   view attached

    Hi all

     

    In our company when we scan aruba controllers, Reflected XSS weakness appear. How can we fix it ?Details attached ( .PNG file)

     

    172.28.3.91 (master controller)

    172.28.3.91:8080,8088/TCP

     

    Thank you.



  • 2.  RE: Reflected XSS

    EMPLOYEE
    Posted Jul 15, 2015 05:27 AM
    What version of code?


    Thanks,
    Tim


  • 3.  RE: Reflected XSS

    Posted Jul 15, 2015 06:04 AM
      |   view attached

    Hi

    ı can  see only these details ( attached)

     

    http://www.owasp.org/documentation/topten/a4.html
    http://www.cgisecurity.org/articles/xss-faq.shtml

    Attachment(s)

    docx
    Doc1.docx   60 KB 1 version


  • 4.  RE: Reflected XSS

    EMPLOYEE
    Posted Jul 15, 2015 07:10 AM
    What version of AOS are you running on your controller? (show version)


    Thanks,
    Tim


  • 5.  RE: Reflected XSS

    Posted Jul 15, 2015 09:08 AM

    Hi Tim ;

     

    Aruba Operating System Software.
    ArubaOS (MODEL: Aruba650), Version 6.4.2.6
    Website: http://www.arubanetworks.com
    Copyright (c) 2002-2015, Aruba Networks, Inc.



  • 6.  RE: Reflected XSS

    EMPLOYEE
    Posted Jul 15, 2015 09:12 AM

    Please open a TAC case to report the issue.