CVE-2005-3971

Currently unrated

Key Information:

Vendor: Citrix
Status: Metaframe Secure Access Manager; Nfuse
Vendor: CVE Published:; 3 December 2005

Summary

Cross-site scripting (XSS) vulnerability in the login form in Citrix MetaFrame Secure Access Manager 2.0 through 2.2 and NFuse Elite 1.0 allows remote attackers to inject arbitrary web script or HTML via the username field.

References

http://securitytracker.com/id?1015305

vdb-entryx_refsource_SECTRACK

http://securitytracker.com/id?1015304

vdb-entryx_refsource_SECTRACK

http://www.securityfocus.com/bid/15664

vdb-entryx_refsource_BID

Timeline

Vulnerability published
Dec 3, 2005
Vulnerability Reserved
Dec 3, 2005