Denial of Service Vulnerability in Mercury SiteScope by Mercury Interactive
CVE-2006-5134

Currently unrated

Key Information:

Vendor: HP
Status: Mercury Sitescope
Vendor: CVE Published:; 3 October 2006

What is CVE-2006-5134?

Mercury SiteScope versions 8.2 and 8.1.2.0 contain a vulnerability that allows remote authenticated users to perform HTML injection in the 'new monitor description' field. This can lead to a denial of service, causing loss of connectivity to the classic interface of the application. Attackers can exploit this weakness to disrupt service, hindering legitimate users from accessing vital monitoring functionalities.

References

http://securityreason.com/securityalert/1670

third-party-advisoryx_refsource_SREASON

http://www.securityfocus.com/archive/1/447397/100/0/threaded

mailing-listx_refsource_BUGTRAQ

https://exchange.xforce.ibmcloud.com/vulnerabilities/29298

vdb-entryx_refsource_XF

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2006
Vulnerability Reserved
Oct 2, 2006

HP

What is CVE-2006-5134?

References

Timeline