CVE-2005-3329

Currently unrated

Key Information:

Vendor
Rsa
Status
Authentication Agent For Web
Vendor
CVE Published:
27 October 2005

Summary

Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and earlier allows remote attackers to inject arbitrary web script or HTML via the image parameter in a GetPic operation.

References

http://secunia.com/advisories/17331
third-party-advisoryx_refsource_SECUNIA
http://securityreason.com/securityalert/116
third-party-advisoryx_refsource_SREASON
http://marc.info/?l=bugtraq&m=113028928630700&w=2
mailing-listx_refsource_BUGTRAQ

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.