Cross-Site Scripting Vulnerabilities in F5 Networks FirePass 4100
CVE-2006-3550

Currently unrated

Key Information:

Vendor: F5
Status: Firepass 4100
Vendor: CVE Published:; 13 July 2006

What is CVE-2006-3550?

F5 Networks FirePass 4100 versions prior to 6.x contain multiple Cross-Site Scripting (XSS) vulnerabilities that enable remote attackers to inject arbitrary web scripts or HTML into writable form fields, including hidden fields. Attackers can exploit these weaknesses to launch malicious scripts, potentially compromising user interactions and authentication processes.

References

http://www.scip.ch/cgi-bin/smss/showadvf.pl?id=2352

x_refsource_MISC

http://www.securityfocus.com/archive/1/439033/100/0/threaded

mailing-listx_refsource_BUGTRAQ

http://securitytracker.com/id?1016431

vdb-entryx_refsource_SECTRACK

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jul 13, 2006
Vulnerability Reserved
Jul 12, 2006