CVE-2017-4011

Summary

Embedding Script (XSS) in HTTP Headers vulnerability in the server in McAfee Network Data Loss Prevention (NDLP) 9.3.x allows remote attackers to get session/cookie information via modification of the HTTP request.

Affected Software

VendorProductVersion RangeStatus
McAfeeNetwork Data Loss Prevention (NDLP)9.3.xaffected

Weaknesses

  • Embedding Script (XSS) in HTTP Headers vulnerability

ADP Enrichment

CVE Program Container

Additional References

References