Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1384

Overview

Vulnerability Score 4.3 4.3
CVE Id CVE-2006-1384
Last Modified 07 Mar 2011 09:32:57
Published 24 Mar 2006 06:02:00
Confidentiality Impact NONE NONE
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1384

Summary

Cross-site scripting (XSS) vulnerability in apwc_win_main.jsp in the web console in IBM Tivoli Business Systems Manager (TBSM) before 3.1.0.1 allows remote attackers to inject arbitrary web script or HTML via the skin parameter.

Vulnerable Systems

Application

  • Ibm Tivoli Business Systems Manager 3.1


References

AIXAPAR - OA14904

SECUNIA - 19332

VUPEN - ADV-2006-1073

XF - tivoli-bsm-skin-xss(25412)

BID - 17210

OSVDB - 24069

SECTRACK - 1015822


Last Updated: 27 May 2016 10:42:02