Nortel SSL VPN - Web Interface Input Validation Vulnerability

ID EDB-ID:26771
Type exploitdb
Reporter Daniel Fabian
Modified 2005-12-08T00:00:00


Nortel SSL VPN 4.2.1 .6 Web Interface Input Validation Vulnerability. CVE-2005-4197. Webapps exploit for cgi platform


Nortel SSL VPN is prone to an input validation vulnerability. This issue could be exploited to cause arbitrary commands to be executed on a user's computer. Cross-site scripting attacks are also possible.

Nortel SSL VPN is vulnerable to this issue; other versions may also be affected.