Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-0946

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-0946
Last Modified 07 Mar 2011 09:31:25
Published 28 Feb 2006 09:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-0946

Summary

Cross-site scripting (XSS) vulnerability in Thomson SpeedTouch modems running firmware 5.3.2.6.0 allows remote attackers to inject arbitrary web script or HTML via the name parameter to the LocalNetwork page.

Vulnerable Systems


References

VUPEN - ADV-2006-0765

BID - 16839

BUGTRAQ - 20060226 Thomson SpeedTouch 500 modems vulnerable to XSS

XF - speedtouch-localnetwork-xss(24977)

OSVDB - 23527

SECTRACK - 1015688

SECUNIA - 19069


Last Updated: 27 May 2016 10:41:52