Lucene search

K
cve[email protected]CVE-2007-5923
HistoryNov 10, 2007 - 2:46 a.m.

CVE-2007-5923

2007-11-1002:46:00
CWE-79
web.nvd.nist.gov
26
cve-2007-5923
xss
vulnerability
ca
etrust
siteminder agent

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.696 Medium

EPSS

Percentile

98.0%

Cross-site scripting (XSS) vulnerability in forms/smpwservices.fcc in CA (formerly Computer Associates) eTrust SiteMinder Agent allows remote attackers to inject arbitrary web script or HTML via the SMAUTHREASON parameter, a different vector than CVE-2005-2204.

Affected configurations

NVD
Node
broadcometrust_siteminder

5.7 Medium

AI Score

Confidence

High

4.3 Medium

CVSS2

Access Vector

Access Complexity

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

0.696 Medium

EPSS

Percentile

98.0%

Related for CVE-2007-5923