Lucene search

[email protected]CVE-2006-5408

HistoryOct 20, 2006 - 2:07 p.m.

CVE-2006-5408

2006-10-2014:07:00

NVD-CWE-Other

[email protected]

web.nvd.nist.gov

security

vulnerability

xss

highwall enterprise

highwall endpoint

nvd

cve-2006-5408

6.5 Medium

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the wireless IDS management interface for Highwall Enterprise and Highwall Endpoint 4.0.2.11045 allow remote attackers to inject arbitrary HTML or web script via unspecified vectors.

CPENameOperatorVersion
mobilesecure_inc:highwall_enterprisemobilesecure inc highwall enterpriseeq4.0.2.11045
mobilesecure_inc:highwall_endpointmobilesecure inc highwall endpointeq4.0.2.11045

CPE	Name	Operator	Version
mobilesecure_inc:highwall_enterprise	mobilesecure inc highwall enterprise	eq	4.0.2.11045
mobilesecure_inc:highwall_endpoint	mobilesecure inc highwall endpoint	eq	4.0.2.11045

References

secunia.com/advisories/22494

securitytracker.com/id?1017091

www.securityfocus.com/archive/1/449118/100/0/threaded

www.securityfocus.com/bid/20605

www.vupen.com/english/advisories/2006/4132

6.5 Medium

AI Score

Confidence

High

5.1 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:H/Au:N/C:P/I:P/A:P

0.016 Low

EPSS

Percentile

87.2%

JSON