Lucene search

[email protected]NVD:CVE-2006-1960

HistoryApr 21, 2006 - 10:02 a.m.

CVE-2006-1960

2006-04-2110:02:00

[email protected]

web.nvd.nist.gov

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.013

Percentile

86.1%

JSON

Cross-site scripting (XSS) vulnerability in the appliance web user interface in Cisco CiscoWorks Wireless LAN Solution Engine (WLSE) and WLSE Express before 2.13 allows remote attackers to inject arbitrary web script or HTML, possibly via the displayMsg parameter to archiveApplyDisplay.jsp, aka bug ID CSCsc01095.

Affected configurations

Nvd

Node

ciscowireless_lan_solution_engineMatch2.0

ciscowireless_lan_solution_engineMatch2.0express

ciscowireless_lan_solution_engineMatch2.1

ciscowireless_lan_solution_engineMatch2.1express

ciscowireless_lan_solution_engineMatch2.2

ciscowireless_lan_solution_engineMatch2.2express

ciscowireless_lan_solution_engineMatch2.3

ciscowireless_lan_solution_engineMatch2.3express

ciscowireless_lan_solution_engineMatch2.4

ciscowireless_lan_solution_engineMatch2.4express

ciscowireless_lan_solution_engineMatch2.5

ciscowireless_lan_solution_engineMatch2.5express

ciscowireless_lan_solution_engineMatch2.6

ciscowireless_lan_solution_engineMatch2.6express

ciscowireless_lan_solution_engineMatch2.7

ciscowireless_lan_solution_engineMatch2.7express

ciscowireless_lan_solution_engineMatch2.8

ciscowireless_lan_solution_engineMatch2.8express

ciscowireless_lan_solution_engineMatch2.9

ciscowireless_lan_solution_engineMatch2.9express

ciscowireless_lan_solution_engineMatch2.10

ciscowireless_lan_solution_engineMatch2.10express

ciscowireless_lan_solution_engineMatch2.11

ciscowireless_lan_solution_engineMatch2.11express

ciscowireless_lan_solution_engineMatch2.12

ciscowireless_lan_solution_engineMatch2.12express

ciscowireless_lan_solution_engineMatch2.13

ciscowireless_lan_solution_engineMatch2.13express

VendorProductVersionCPE
ciscowireless_lan_solution_engine2.0cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:*:*:*:*:*:*
ciscowireless_lan_solution_engine2.0cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:*:express:*:*:*:*:*
ciscowireless_lan_solution_engine2.1cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:*:*:*:*:*:*
ciscowireless_lan_solution_engine2.1cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:*:express:*:*:*:*:*
ciscowireless_lan_solution_engine2.2cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:*:*:*:*:*:*
ciscowireless_lan_solution_engine2.2cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:*:express:*:*:*:*:*
ciscowireless_lan_solution_engine2.3cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:*:*:*:*:*:*
ciscowireless_lan_solution_engine2.3cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:*:express:*:*:*:*:*
ciscowireless_lan_solution_engine2.4cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:*:*:*:*:*:*
ciscowireless_lan_solution_engine2.4cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:*:express:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	wireless_lan_solution_engine	2.0	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0:::::::*
cisco	wireless_lan_solution_engine	2.0	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.0::express:::::
cisco	wireless_lan_solution_engine	2.1	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1:::::::*
cisco	wireless_lan_solution_engine	2.1	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.1::express:::::
cisco	wireless_lan_solution_engine	2.2	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2:::::::*
cisco	wireless_lan_solution_engine	2.2	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.2::express:::::
cisco	wireless_lan_solution_engine	2.3	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3:::::::*
cisco	wireless_lan_solution_engine	2.3	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.3::express:::::
cisco	wireless_lan_solution_engine	2.4	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4:::::::*
cisco	wireless_lan_solution_engine	2.4	cpe:2.3:a:cisco:wireless_lan_solution_engine:2.4::express:::::

Rows per page:

1-10 of 281

References

secunia.com/advisories/19736

securitytracker.com/id?1015965

www.assurance.com.au/advisories/200604-cisco.txt

www.cisco.com/warp/public/707/cisco-sa-20060419-wlse.shtml

www.osvdb.org/24812

www.securityfocus.com/archive/1/431367/30/5490/threaded

www.securityfocus.com/archive/1/431371/30/5490/threaded

www.securityfocus.com/bid/17604

www.vupen.com/english/advisories/2006/1434

exchange.xforce.ibmcloud.com/vulnerabilities/25883

CVSS2

5.8

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:P/A:N

AI Score

5.9

Confidence

High

EPSS

0.013

Percentile

86.1%

JSON

Related for NVD:CVE-2006-1960

cisco1 cvelist1 prion1 exploitdb1 cve1