HTTP: Mcafee reflected Cross Site Scripting

This signature detects attempts to exploit a known cross-site scripting vulnerability against Mcafee. It is due to insufficient validation of user-supplied input. Attackers can steal cookie-based authentication credentials and launch other attacks.

Extended Description

Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of the HTTP request.

Affected Products

Mcafee network_data_loss_prevention

References

CVE: CVE-2017-4011

Short Name
HTTP:CTS:MCAFEE-REF-XSS
Severity
Minor
Recommended
False
Recommended Action
Drop
Category
HTTP
Keywords
CVE-2017-4011 Cross Mcafee Scripting Site reflected
Release Date
11/24/2022
Supported Platforms

srx-branch-12.3

srx-19.3

srx-branch-19.3

vsrx3bsd-19.2

srx-branch-19.4

vsrx-19.4

mx-12.3

mx-19.4

vmx-19.4

mx-19.3

vsrx3bsd-19.4

srx-19.4

vsrx-12.3

vmx-19.3

vsrx-19.2

srx-12.3

Sigpack Version
3548
False Positive
Unknown
Vendors

Mcafee

Found a potential security threat?