Lucene search

MitreCVE-2006-5408

HistoryOct 20, 2006 - 2:07 p.m.

CVE-2006-5408

2006-10-2014:07:00

mitre

web.nvd.nist.gov

security

vulnerability

xss

highwall enterprise

highwall endpoint

nvd

cve-2006-5408

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

High

EPSS

0.016

Percentile

87.5%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the wireless IDS management interface for Highwall Enterprise and Highwall Endpoint 4.0.2.11045 allow remote attackers to inject arbitrary HTML or web script via unspecified vectors.

Affected configurations

Nvd

Node

mobilesecure_inchighwall_endpointMatch4.0.2.11045

mobilesecure_inchighwall_enterpriseMatch4.0.2.11045

VendorProductVersionCPE
mobilesecure_inchighwall_endpoint4.0.2.11045cpe:2.3:a:mobilesecure_inc:highwall_endpoint:4.0.2.11045:*:*:*:*:*:*:*
mobilesecure_inchighwall_enterprise4.0.2.11045cpe:2.3:a:mobilesecure_inc:highwall_enterprise:4.0.2.11045:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
mobilesecure_inc	highwall_endpoint	4.0.2.11045	cpe:2.3:a:mobilesecure_inc:highwall_endpoint:4.0.2.11045:::::::*
mobilesecure_inc	highwall_enterprise	4.0.2.11045	cpe:2.3:a:mobilesecure_inc:highwall_enterprise:4.0.2.11045:::::::*

References

secunia.com/advisories/22494

securitytracker.com/id?1017091

www.securityfocus.com/archive/1/449118/100/0/threaded

www.securityfocus.com/bid/20605

www.vupen.com/english/advisories/2006/4132

CVSS2

5.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

AI Score

6.2

Confidence

High

EPSS

0.016

Percentile

87.5%

JSON

Related for CVE-2006-5408