Lucene search
MitreCVE-2006-3289HistoryJun 28, 2006 - 11:05 p.m.
CVE-2006-3289
2006-06-2823:05:00
mitre
web.nvd.nist.gov
28
cve-2006-3289
cross-site scripting
xss
cisco
wireless control system
wcs
linux
windows
nvd
security vulnerability
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
74.7%
Cross-site scripting (XSS) vulnerability in the login page of the HTTP interface for the Cisco Wireless Control System (WCS) for Linux and Windows before 3.2(51) allows remote attackers to inject arbitrary web script or HTML via unspecified vectors involving a “malicious URL”.
Affected configurations
Node
ciscowireless_control_systemRange≤3.2\(51\)
| Vendor | Product | Version | CPE |
|---|---|---|---|
| cisco | wireless_control_system | * | cpe:2.3:h:cisco:wireless_control_system:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2006-3289
2006-06-28 23:00:00
nvd
nvd
CVE-2006-3289
2006-06-28 23:05:00
cisco
cisco
Multiple Vulnerabilities in Wireless Control System
2006-06-28 16:00:00
CVSS2
2.6
Attack Vector
NETWORK
Attack Complexity
HIGH
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:H/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.004
Percentile
74.7%
Related for CVE-2006-3289