Lucene search
HistoryFeb 09, 2009 - 5:30 p.m.
CVE-2008-6096
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.002
Percentile
60.3%
Cross-site scripting (XSS) vulnerability in Juniper NetScreen ScreenOS before 5.4r10, 6.0r6, and 6.1r2 allows remote attackers to inject arbitrary web script or HTML via the user name parameter to the (1) web interface login page or the (2) telnet login page.
Affected configurations
Node
junipernetscreen_screenosMatch1.6.0
ORjunipernetscreen_screenosRange≤5.4.0r9.0
ORjunipernetscreen_screenosMatch2.0.0
ORjunipernetscreen_screenosMatch2.5.0
ORjunipernetscreen_screenosMatch2.6.0
ORjunipernetscreen_screenosMatch2.6.1
ORjunipernetscreen_screenosMatch2.6.1r1
ORjunipernetscreen_screenosMatch2.6.1r2
ORjunipernetscreen_screenosMatch2.6.1r3
ORjunipernetscreen_screenosMatch2.6.1r4
ORjunipernetscreen_screenosMatch2.6.1r5
ORjunipernetscreen_screenosMatch2.6.1r6
ORjunipernetscreen_screenosMatch2.6.1r7
ORjunipernetscreen_screenosMatch2.6.1r8
ORjunipernetscreen_screenosMatch2.6.1r9
ORjunipernetscreen_screenosMatch2.6.1r10
ORjunipernetscreen_screenosMatch2.6.1r11
ORjunipernetscreen_screenosMatch2.6.1r12
ORjunipernetscreen_screenosMatch2.7.0
ORjunipernetscreen_screenosMatch2.7.1
ORjunipernetscreen_screenosMatch2.7.1r1
ORjunipernetscreen_screenosMatch2.7.1r2
ORjunipernetscreen_screenosMatch2.7.1r3
ORjunipernetscreen_screenosMatch3.0.0
ORjunipernetscreen_screenosMatch3.0.0r1
ORjunipernetscreen_screenosMatch3.0.0r2
ORjunipernetscreen_screenosMatch3.0.0r3
ORjunipernetscreen_screenosMatch3.0.0r4
ORjunipernetscreen_screenosMatch3.0.1
ORjunipernetscreen_screenosMatch3.0.1r1
ORjunipernetscreen_screenosMatch3.0.1r2
ORjunipernetscreen_screenosMatch3.0.1r3
ORjunipernetscreen_screenosMatch3.0.1r4
ORjunipernetscreen_screenosMatch3.0.1r5
ORjunipernetscreen_screenosMatch3.0.1r6
ORjunipernetscreen_screenosMatch3.0.1r7
ORjunipernetscreen_screenosMatch3.0.2
ORjunipernetscreen_screenosMatch3.0.3
ORjunipernetscreen_screenosMatch3.0.3r1
ORjunipernetscreen_screenosMatch3.0.3r1.1
ORjunipernetscreen_screenosMatch3.0.3r2
ORjunipernetscreen_screenosMatch3.0.3r3
ORjunipernetscreen_screenosMatch3.0.3r4
ORjunipernetscreen_screenosMatch3.0.3r5
ORjunipernetscreen_screenosMatch3.0.3r6
ORjunipernetscreen_screenosMatch3.0.3r7
ORjunipernetscreen_screenosMatch3.0.3r8
ORjunipernetscreen_screenosMatch3.1.0
ORjunipernetscreen_screenosMatch3.1.0r1
ORjunipernetscreen_screenosMatch3.1.0r2
ORjunipernetscreen_screenosMatch3.1.0r3
ORjunipernetscreen_screenosMatch3.1.0r4
ORjunipernetscreen_screenosMatch3.1.0r5
ORjunipernetscreen_screenosMatch3.1.0r6
ORjunipernetscreen_screenosMatch3.1.0r7
ORjunipernetscreen_screenosMatch3.1.0r8
ORjunipernetscreen_screenosMatch3.1.0r9
ORjunipernetscreen_screenosMatch3.1.0r10
ORjunipernetscreen_screenosMatch3.1.0r11
ORjunipernetscreen_screenosMatch3.1.0r12
ORjunipernetscreen_screenosMatch4.0.0
ORjunipernetscreen_screenosMatch4.0.0dial
ORjunipernetscreen_screenosMatch4.0.0dial2
ORjunipernetscreen_screenosMatch4.0.0r1
ORjunipernetscreen_screenosMatch4.0.0r2
ORjunipernetscreen_screenosMatch4.0.0r3
ORjunipernetscreen_screenosMatch4.0.0r4
ORjunipernetscreen_screenosMatch4.0.0r5
ORjunipernetscreen_screenosMatch4.0.0r6
ORjunipernetscreen_screenosMatch4.0.0r7
ORjunipernetscreen_screenosMatch4.0.0r8
ORjunipernetscreen_screenosMatch4.0.0r9
ORjunipernetscreen_screenosMatch4.0.0r10
ORjunipernetscreen_screenosMatch4.0.0r11
ORjunipernetscreen_screenosMatch4.0.0r12
ORjunipernetscreen_screenosMatch4.0.1
ORjunipernetscreen_screenosMatch4.0.1r1
ORjunipernetscreen_screenosMatch4.0.1r2
ORjunipernetscreen_screenosMatch4.0.1r3
ORjunipernetscreen_screenosMatch4.0.1r4
ORjunipernetscreen_screenosMatch4.0.1r5
ORjunipernetscreen_screenosMatch4.0.1r6
ORjunipernetscreen_screenosMatch4.0.1r7
ORjunipernetscreen_screenosMatch4.0.1r8
ORjunipernetscreen_screenosMatch4.0.1r9
ORjunipernetscreen_screenosMatch4.0.1r10
ORjunipernetscreen_screenosMatch4.0.2
ORjunipernetscreen_screenosMatch4.0.3
ORjunipernetscreen_screenosMatch4.0.3r1
ORjunipernetscreen_screenosMatch4.0.3r2
ORjunipernetscreen_screenosMatch4.0.3r3
ORjunipernetscreen_screenosMatch4.0.3r4
ORjunipernetscreen_screenosMatch4.0.3r5
ORjunipernetscreen_screenosMatch4.0.3r6
ORjunipernetscreen_screenosMatch4.0.3r7
ORjunipernetscreen_screenosMatch4.0.3r8
ORjunipernetscreen_screenosMatch4.0.3r9
ORjunipernetscreen_screenosMatch5.0.0
ORjunipernetscreen_screenosMatch5.0.0r1
ORjunipernetscreen_screenosMatch5.0.0r2
ORjunipernetscreen_screenosMatch5.0.0r3
ORjunipernetscreen_screenosMatch5.0.0r4
ORjunipernetscreen_screenosMatch5.0.0r5
ORjunipernetscreen_screenosMatch5.0.0r6
ORjunipernetscreen_screenosMatch5.0.0r7
ORjunipernetscreen_screenosMatch5.0.0r8
ORjunipernetscreen_screenosMatch5.0.0r9
ORjunipernetscreen_screenosMatch5.0.0r10
ORjunipernetscreen_screenosMatch5.0.0r11
ORjunipernetscreen_screenosMatch5.1.0
ORjunipernetscreen_screenosMatch5.1.0r1
ORjunipernetscreen_screenosMatch5.1.0r2
ORjunipernetscreen_screenosMatch5.1.0r3
ORjunipernetscreen_screenosMatch5.1.0r4
ORjunipernetscreen_screenosMatch5.2.0
ORjunipernetscreen_screenosMatch5.2.0r1
ORjunipernetscreen_screenosMatch5.2.0r2
ORjunipernetscreen_screenosMatch5.2.0r3
ORjunipernetscreen_screenosMatch5.3.0
ORjunipernetscreen_screenosMatch5.3.0r1
ORjunipernetscreen_screenosMatch5.3.0r2
ORjunipernetscreen_screenosMatch5.3.0r3
ORjunipernetscreen_screenosMatch5.3.0r4
ORjunipernetscreen_screenosMatch5.3.0r5
ORjunipernetscreen_screenosMatch5.3.0r6
ORjunipernetscreen_screenosMatch5.3.0r7
ORjunipernetscreen_screenosMatch5.3.0r8
ORjunipernetscreen_screenosMatch5.3.0r9
ORjunipernetscreen_screenosMatch5.3.0r10
ORjunipernetscreen_screenosMatch5.4.0
ORjunipernetscreen_screenosMatch5.4.0r1
ORjunipernetscreen_screenosMatch5.4.0r2
ORjunipernetscreen_screenosMatch5.4.0r3
ORjunipernetscreen_screenosMatch5.4.0r4
ORjunipernetscreen_screenosMatch5.4.0r5
ORjunipernetscreen_screenosMatch5.4.0r6
ORjunipernetscreen_screenosMatch5.4.0r7
ORjunipernetscreen_screenosMatch5.4.0r8
ORjunipernetscreen_screenosMatch5.4.0r8a
ORjunipernetscreen_screenosMatch6.0.0r6
ORjunipernetscreen_screenosMatch6.1.0r2
| Vendor | Product | Version | CPE |
|---|---|---|---|
| juniper | netscreen_screenos | 1.6.0 | cpe:2.3:a:juniper:netscreen_screenos:1.6.0:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | * | cpe:2.3:o:juniper:netscreen_screenos:*:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.0.0 | cpe:2.3:o:juniper:netscreen_screenos:2.0.0:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.5.0 | cpe:2.3:o:juniper:netscreen_screenos:2.5.0:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.0 | cpe:2.3:o:juniper:netscreen_screenos:2.6.0:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.1 | cpe:2.3:o:juniper:netscreen_screenos:2.6.1:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.1r1 | cpe:2.3:o:juniper:netscreen_screenos:2.6.1r1:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.1r2 | cpe:2.3:o:juniper:netscreen_screenos:2.6.1r2:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.1r3 | cpe:2.3:o:juniper:netscreen_screenos:2.6.1r3:*:*:*:*:*:*:* |
| juniper | netscreen_screenos | 2.6.1r4 | cpe:2.3:o:juniper:netscreen_screenos:2.6.1r4:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-6096
2009-02-09 17:00:00
cve
cve
CVE-2008-6096
2009-02-09 17:30:00
prion
prion
Cross site scripting
2009-02-09 17:30:00
nessus
nessus
CVSS2
4.3
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:N/I:P/A:N
AI Score
5.7
Confidence
High
EPSS
0.002
Percentile
60.3%
Related for NVD:CVE-2008-6096