CVE-2006-1357

Currently unrated

Key Information:

Vendor: F5
Status: Firepass 4100
Vendor: CVE Published:; 22 March 2006

Summary

Cross-site scripting (XSS) vulnerability in my.support.php3 in F5 Firepass 4100 SSL VPN 5.4.2 allows remote attackers to inject arbitrary web script or HTML via the s parameter.

References

http://secunia.com/advisories/19337

third-party-advisoryx_refsource_SECUNIA

http://www.securityfocus.com/bid/17175

vdb-entryx_refsource_BID

http://www.securityfocus.com/archive/1/428318/100/0/threaded

mailing-listx_refsource_BUGTRAQ

EPSS Score

6% chance of being exploited in the next 30 days.

Timeline

Vulnerability published
Mar 22, 2006
Vulnerability Reserved
Mar 21, 2006