Lucene search

[email protected]CVE-2006-3550

HistoryJul 13, 2006 - 12:05 a.m.

CVE-2006-3550

2006-07-1300:05:00

[email protected]

web.nvd.nist.gov

cve-2006-3550

cross-site scripting

xss

f5 networks

firepass 4100

security vulnerabilities

nvd

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in F5 Networks FirePass 4100 5.x allow remote attackers to inject arbitrary web script or HTML via unspecified “writable form fields and hidden fields,” including “authentication frontends.”

Affected configurations

NVD

Node

f5firepass_4100Match5.4.2

CPENameOperatorVersion
f5:firepass_4100f5 firepass 4100eq5.4.2

CPE	Name	Operator	Version
f5:firepass_4100	f5 firepass 4100	eq	5.4.2

References

lists.grok.org.uk/pipermail/full-disclosure/2006-July/047635.html

securityreason.com/securityalert/1237

securitytracker.com/id?1016431

www.scip.ch/cgi-bin/smss/showadvf.pl?id=2352

www.securityfocus.com/archive/1/439033/100/0/threaded

www.securityfocus.com/bid/18799

www.vupen.com/english/advisories/2006/2678

exchange.xforce.ibmcloud.com/vulnerabilities/27547

2.6 Low

CVSS2

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:N/I:P/A:N

5.8 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

Related for CVE-2006-3550

cvelist2 nvd2 prion1 cve1