Exploit Persistent XSS And Unsanitized Injection Vectors For Layer 2 Bypass And...

Discussion in 'News Aggregator' started by Packet Storm, 27 May 2022.

  1. Packet Storm

    Packet Storm Guest

    This whitepaper demonstrates leveraging cross site scripting and polyglot exploitation in an exploit called COOLHANDLUKE to violate network segmentation / layer 2 VLAN policies while routing and sending a file between isolated, air gapped networks without a router. This issue affects HPE Procurve, Aruba Networks, Cisco, Dell, and Netgear products.

    Continue reading...
     
    #1 Packet Storm, 27 May 2022
(You must log in or sign up to post here.)

Share This Page

Loading...