Seems Bb have a reply to this problem - be nice if they'd posted it to this
group as well as the American group!
Andra
> -----Original Message-----
> From: blkbrd-l - "Listserv" [mailto:[log in to unmask]]On Behalf Of
> Michael Stanton
> Sent: 09 July 2002 22:21
> To: [log in to unmask]
> Subject: Blackboard & CSS Clarification
>
>
> All,
>
> Recently, there have been several postings regarding a CSS vulnerability
> in Blackboard 5. We have taken steps to eliminate this potential risk
> and wanted to relay the following information:
>
> Issue: Blackboard 5 contains multiple input validation
> errors, exploitable with CSS. Possible risks posed to Blackboard
> Corporate Web Site, as well as discussion boards and user passwords
> within Blackboard.
>
> Resolutions:
>
> *
> Corporate Web Site: Changes have already been made to protect
> our corporate website, and further improvements are underway.
> *
> Discussion Board: This issue has been completely resolved with
> the release of Blackboard 5.5.
> *
> Password Issue: A fix will be sent through QA testing and
> released as soon as possible. This issue has been completely resolved
> with Blackboard Learning System - (Release 6) and Blackboard Learning
> System - ML (Multi Language).
>
> Please contact David Yaskin ([log in to unmask]), Vice President of
> Product Management at Blackboard directly if you have any additional
> questions.
>
> Thank you for your feedback and attention to this matter.
>
> Regards,
>
> Michael J. Stanton
> Senior Director, Corporate Communications
> Blackboard Inc.
> 1899 L Street, NW - 5th Floor
> Washington, DC 20036
> P. (202) 463-4860 ext. 305
> F. (202) 318-2329
> [log in to unmask]
>
>
> Directions to BLKBRD-L archives and settings:
> http://is.asu.edu/instruction/faq/usingBLKBRD-L.html
>
|