Lumension® Endpoint Intelligence Center

Intelligence Center » Browse All Vulnerabilities » CVE-2006-1574

Overview

Vulnerability Score 5.8 5.8
CVE Id CVE-2006-1574
Last Modified 07 Mar 2011 09:33:20
Published 31 Mar 2006 07:04:00
Confidentiality Impact PARTIAL PARTIAL
Integrity Impact PARTIAL PARTIAL
Availability Impact NONE NONE
Access Vector NETWORK
Access Complexity MEDIUM
Authentication NONE

CVE-2006-1574

Summary

Cross-site scripting (XSS) vulnerability in Groupmax World Wide Web, World Wide Web Desktop, World Wide Web for Scheduler, and Desktop for Scheduler, allows remote attackers to inject arbitrary web script or HTML via unknown attack vectors.

Vulnerable Systems

Application

  • Hitachi Groupmax World Wide Web 2

  • Hitachi Groupmax World Wide Web 3

  • Hitachi Groupmax World Wide Web Desktop

  • Hitachi Groupmax World Wide Web Desktop 5

  • Hitachi Groupmax World Wide Web Desktop 6

  • Hitachi Groupmax World Wide Web Desktop Scheduler 5

  • Hitachi Groupmax World Wide Web Scheduler 2

  • Hitachi Groupmax World Wide Web Scheduler 3


References

CONFIRM - http://www.hitachi-support.com/security_e/vuls_e/HS06-005_e/index-e.html

VUPEN - ADV-2006-1180

SECUNIA - 19483

XF - groupmax-www-xss(25574)

BID - 17337

OSVDB - 24295


Last Updated: 27 May 2016 10:42:06