Lucene search
HistoryNov 10, 2007 - 2:46 a.m.
CVE-2007-5923
cve-2007-5923
xss
vulnerability
ca
etrust
siteminder agent
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.696 Medium
EPSS
Percentile
98.0%
Cross-site scripting (XSS) vulnerability in forms/smpwservices.fcc in CA (formerly Computer Associates) eTrust SiteMinder Agent allows remote attackers to inject arbitrary web script or HTML via the SMAUTHREASON parameter, a different vector than CVE-2005-2204.
Affected configurations
Node
broadcometrust_siteminder
| CPE | Name | Operator | Version |
|---|---|---|---|
| broadcom:etrust_siteminder | broadcom etrust siteminder | eq | * |
Related
cvelist
cvelist
CVE-2007-5923
2007-11-10 02:00:00
CVE-2005-2204
2005-07-11 04:00:00
prion
prion
Cross site scripting
2007-11-10 02:46:00
nvd
nvd
CVE-2007-5923
2007-11-10 02:46:00
CVE-2005-2204
2005-07-11 04:00:00
cve
cve
CVE-2005-2204
2005-07-11 04:00:00
nessus
nessus
SiteMinder 5.5 Multiple Script XSS
2005-07-11 00:00:00
5.7 Medium
AI Score
Confidence
High
4.3 Medium
CVSS2
Access Vector
Access Complexity
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
0.696 Medium
EPSS
Percentile
98.0%
Related for CVE-2007-5923