Lucene search

[email protected]CVE-2006-3567

HistoryJul 13, 2006 - 1:05 a.m.

CVE-2006-3567

2006-07-1301:05:00

[email protected]

web.nvd.nist.gov

cve-2006-3567

cross-site scripting

xss

vulnerability

juniper networks

redline

dx 5.1.x

nvd

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

Cross-site scripting (XSS) vulnerability in the web administration interface logging feature in Juniper Networks (Redline) DX 5.1.x, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the username login field.

Affected configurations

NVD

Node

juniperdxRange≤5.1

CPENameOperatorVersion
juniper:dxjuniper dxle5.1

CPE	Name	Operator	Version
juniper:dx	juniper dx	le	5.1

References

secunia.com/advisories/20990

securityreason.com/securityalert/1218

securitytracker.com/id?1016462

www.osvdb.org/27131

www.securityfocus.com/archive/1/439758/100/0/threaded

www.securityfocus.com/bid/18926

www.vupen.com/english/advisories/2006/2741

exchange.xforce.ibmcloud.com/vulnerabilities/27645

4.3 Medium

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

6 Medium

AI Score

Confidence

High

0.006 Low

EPSS

Percentile

78.8%

JSON

Related for CVE-2006-3567

nvd1 cvelist1