4 matches found
CVE-2007-3097
my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers to execute arbitrary shell commands via shell metacharacters in the username parameter...
CVE-2007-3097
FirePass (4100 SSL VPN) my.activation.php3 login page suffers a cross-site scripting (XSS) vulnerability due to insufficient sanitization of URL arguments, enabling attacker-controlled HTML/JavaScript when a user follows a crafted link. F5 advisory SOL6919 states this was fixed in maintenance ver...
CVE-2007-3097
my.activation.php3 in F5 FirePass 4100 SSL VPN allows remote attackers to execute arbitrary shell commands via shell metacharacters in the username parameter...
SOL6919 - Cross-site scripting vulnerability in my.activation.php3 CVE-2007-3097
A cross-site scripting XSS vulnerability exists in the FirePass my.activation.php3 logon page.The affected FirePass logon URL fails to fully sanitize certain URL arguments before the requested web page content is returned to the browser. It is possible for an attacker to create web pages, emails ...