Lucene search

[email protected]NVD:CVE-2006-3567

HistoryJul 13, 2006 - 1:05 a.m.

CVE-2006-3567

2006-07-1301:05:00

[email protected]

web.nvd.nist.gov

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.006

Percentile

78.8%

JSON

Cross-site scripting (XSS) vulnerability in the web administration interface logging feature in Juniper Networks (Redline) DX 5.1.x, and possibly earlier versions, allows remote attackers to inject arbitrary web script or HTML via the username login field.

Affected configurations

Nvd

Node

juniperdxRange≤5.1

VendorProductVersionCPE
juniperdx*cpe:2.3:h:juniper:dx:*:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	dx	*	cpe:2.3:h:juniper:dx::::::::

References

secunia.com/advisories/20990

securityreason.com/securityalert/1218

securitytracker.com/id?1016462

www.osvdb.org/27131

www.securityfocus.com/archive/1/439758/100/0/threaded

www.securityfocus.com/bid/18926

www.vupen.com/english/advisories/2006/2741

exchange.xforce.ibmcloud.com/vulnerabilities/27645

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:M/Au:N/C:N/I:P/A:N

AI Score

5.8

Confidence

High

EPSS

0.006

Percentile

78.8%

JSON

Related for NVD:CVE-2006-3567

cve1 cvelist1