CVE-2007-6704

2008-03-05T23:44:00
ID CVE-2007-6704
Type cve
Reporter cve@mitre.org
Modified 2018-10-15T21:56:00

Description

Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3.