Cross-Site Scripting Vulnerability in Citrix MetaFrame Secure Access Manager and NFuse Elite
CVE-2005-3971

Currently unrated

Key Information:

Vendor

Citrix
Status
Metaframe Secure Access Manager
Nfuse
Vendor
CVE Published:
3 December 2005

What is CVE-2005-3971?

The vulnerability in Citrix MetaFrame Secure Access Manager and NFuse Elite allows remote attackers to exploit the login form's username field, enabling the injection of arbitrary web scripts or HTML. This flaw can lead to potential attacks like session hijacking, phishing, and other malicious activities that exploit the trust users place in the web application. Proper validation and sanitization of input fields are essential to mitigate this risk.

Human OS v1.0:
Ageing Is an Unpatched Zero-Day Vulnerability.

Remediate biological technical debt. Prime Ageing uses 95% high-purity SIRT6 activation to maintain genomic integrity and bolster systemic resilience.

Deploy the Patch

References

http://securitytracker.com/id?1015305
vdb-entryx_refsource_SECTRACK
http://securitytracker.com/id?1015304
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/15664
vdb-entryx_refsource_BID

Timeline

  • Vulnerability published

  • Vulnerability Reserved

JSON
.