NVD

Id
64316  
Name
CVE-2006-5741  
Description
Multiple cross-site scripting (XSS) vulnerabilities in AirMagnet Enterprise before 7.5 build 6307 allow remote attackers to inject arbitrary web script or HTML via (1) the 404 error page of the Smart Sensor Edge Sensor; (2) the user name for a failed logon, when displayed in the audit journals reviewing interface (/AirMagnetSensor/AMSensor.dll/XH) by the Smart Sensor Edge Sensor log viewer; and (3) an SSID of an AP, when displayed on an ACL page (/Amom/Amom.dll/BD) of the Enterprise Server Status Overview in the Enterprise Server Web interface.  
Reject
 
CVSS Version
2  
CVSS Score
4.3  
Severity
Medium  
CVSS Base Score
4.3  
CVSS Impact Subscore
2.9  
CVSS Exploit Subscore
8.6  
CVSS Vector
(AV:N/AC:M/Au:N/C:N/I:P/A:N)  
Pub Date
2016-12-20  
Published
2006-11-06  
Modified Date
2008-09-05  
Seq
2006-5741  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
335456 64316 CVE-2006-5741 20061018 Airmagnet management interfaces multiple vulnerabilities  View
335457 64316 CVE-2006-5741 20061025 Web-style Wireless IDS attacks  View
335458 64316 CVE-2006-5741 20061117 Re: Airmagnet management interfaces multiple vulnerabilities  View
335459 64316 CVE-2006-5741 20602  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
59229 JVNDB-2006-001495 AirMagnet Enterprise におけるクロスサイトスクリプティングの脆弱性 AirMagnet Enterprise には、クロスサイトスクリプティングの脆弱性が存在します。 CVE-2006-5741 21843 CVE-2006-5741 64316 4.3 http://jvndb.jvn.jp/ja/contents/2006/JVNDB-2006-001495.html 2006-11-06 2012-06-26 View