Hi,
Does the reflected cross-site scripting vulnerability (SPL-59895, CVE-2012-6447) affect to Splunk 4.0 through 4.3?
If that versions are affected, please tell me what to do.
Thanks,
SPL-59895 (CVE-2012-6447 reserved) is for 5.0.0-5.0.2.
The same issue in 4.3.0-4.3.5 is tracked as SPL-60629 (CVE-2013-2766) and was
fixed in 4.3.6 as announced here:
http://www.splunk.com/view/SP-CAAAHSQ
This was already answered:
Recommendation/Mitigation is to upgrade to at least 4.3.6 or 5.0.3
SPL-59895 (CVE-2012-6447 reserved) is for 5.0.0-5.0.2.
The same issue in 4.3.0-4.3.5 is tracked as SPL-60629 (CVE-2013-2766) and was
fixed in 4.3.6 as announced here:
http://www.splunk.com/view/SP-CAAAHSQ
This was already answered:
Recommendation/Mitigation is to upgrade to at least 4.3.6 or 5.0.3
Thank you for answering my questions.