CVE-2006-5416
Summary
| CVE | CVE-2006-5416 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2006-10-20 14:07:00 UTC |
| Updated | 2018-10-17 21:42:00 UTC |
| Description | Cross-site scripting (XSS) vulnerability in my.acctab.php3 in F5 Networks FirePass 1000 SSL VPN 5.5, and possibly earlier, allows remote attackers to inject arbitrary web script or HTML via the sid parameter. |
Risk And Classification
Problem Types: NVD-CWE-Other
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | F5 | Firepass 1000 | 5.5 | All | All | All |
| Hardware | F5 | Firepass 1000 | 5.5 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| F5 FirePass 1000 SSL VPN My.AccTab.PHP3 Cross-Site Scripting Vulnerability | BID | www.securityfocus.com | Patch |
| SecurityReason - F5 Firepass 1000 SSL VPN version 5.5 vulnerable to Cross-Site Scripting | SREASON | securityreason.com | |
| Webmail : Solution de messagerie professionnelle - OVHcloud- OVH | VUPEN | www.vupen.com | |
| ProCheckUp - Security Vulnerabilities 2005 | MISC | www.procheckup.com | Patch |
| IBM X-Force Exchange | XF | exchange.xforce.ibmcloud.com | |
| FirePass 1000 SSL VPN "sid" Cross-Site Scripting Vulnerability - Advisories - Secunia | SECUNIA | secunia.com | Vendor Advisory |
| F5 FirePass 1000 Input Validation Flaw in 'my.acctab.php3' Permits Cross-Site Scripting Attacks - SecurityTracker | SECTRACK | securitytracker.com | |
| SecurityFocus | BUGTRAQ | www.securityfocus.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.