NVD

Id
65742  
Name
CVE-2006-7199  
Description
EMC RSA Security SiteKey allows remote attackers to display the correct image via a man-in-the-middle (MITM) attack in which an attacker-controlled server proxies authentication data to and from a legitimate SiteKey server. NOTE: the vendor disputes the severity of the issue, stating that it is easier to monitor this attack than "attacks against static web pages."  
Reject
 
CVSS Version
2  
CVSS Score
8.5  
Severity
High  
CVSS Base Score
8.5  
CVSS Impact Subscore
10  
CVSS Exploit Subscore
6.8  
CVSS Vector
(AV:N/AC:M/Au:S/C:C/I:C/A:C)  
Pub Date
2016-12-20  
Published
2007-04-30  
Modified Date
2008-09-05  
Seq
2006-7199  

Actions

Related NVD References

Id NVD Id NVD No. Reference Actions
342348 65742 CVE-2006-7199 http://www.cr-labs.com/publications/SiteKey-20060718.pdf  View
342349 65742 CVE-2006-7199 http://www.cr-labs.com/publications/WhySiteKey-20060824.pdf  View
342350 65742 CVE-2006-7199 http://www.networkworld.com/newsletters/sec/2007/0402sec2.html  View

Related JVN

Id Name Title Summary Cveinfo Name Cveinfo Id Nvdinfo Name Nvdinfo Id Cvssv2 Cvssv3 Jvnurl Published Date Last Updated Date Actions
52609 JVNDB-2007-001301 EMC RSA Security SiteKey における正確なイメージを表示される脆弱性 EMC RSA Security SiteKey は、正確なイメージを表示される脆弱性が存在します。 CVE-2006-7199 23301 CVE-2006-7199 65742 8.5 http://jvndb.jvn.jp/ja/contents/2007/JVNDB-2007-001301.html 2007-04-30 2012-06-26 View